Problem with Let's Encrypt SSL Certificate

Hi there:

Can you let me know what site you’re having this problem? Once I have that information, I’ll be better able to help.

If you want it to remain private, you can also contact us via this contact form:
http://jetpack.com/contact-support/

Additionally, without the Let’s Encrypt cert in place, we won’t be able to test why things aren’t working for you – so please re-enable that when you get back in touch.

Thanks!

Thank you – that helps!

I had a look at your site, and it seems that the WordPress.com servers cannot connect to your server to make the connection with Jetpack. This is because our server cannot verify your server’s SSL certificate.

Here’s a report that gives some more details:
https://www.ssllabs.com/ssltest/analyze.html?d=nav-magno.be&hideResults=on

The problem is that OpenSSL doesn’t recognize your certificate’s Certificate Authority’s (CA) certificate. The URL works in most browsers because they allow for certificate discovery by reading the “Authority Information Access” metadata from the certificate, which contains a URL from which the browser can download the CA’s certificate. OpenSSL does not do this though.

The best solution is if you can configure your webserver to supply the entire SSL certificate chain, rather than just your own certificate. That’s what we do on WordPress.com. Sending the entire chain will also make your sites more compatible with older (and I believe some mobile) browsers.

I hope that helps!

Thanks for that information! That will be useful for anyone else with the same issue going forward.

Cheers!