Fix BigBlueButton sharing presentation file due to Let’s Encrypt Root X3 CA expiry

Leave a Reply

Comment as a guest.

  1. Thank you!! This helped me along to find the correct solution. There are some things that I needed to do differently though. First, you should NOT disable X1, because that is the current working root CA for letsencrypt. Moreover you need a higher version of openssl than is available by default on ubuntu 16.04. (see https://letsencrypt.org/docs/dst-root-ca-x3-expiration-september-2021/) I used the instructions here: https://dev.to/tandavala/how-to-install-openssl-from-source-code-on-ubuntu-16-04-j5j . After performing these steps and restarting bbb, presentations are working again!

    1. Hello Henk,
      You’ re welcome , actually It was a mistake to deactivate ISRG_Root_X1 , I just edited the blog post.
      Thanks for sharing a hint about OpenSSL version in Ubuntu 16 , sure we have to update it.

  2. Thanks for you help.
    Unfortunately I have another error now:
    Istead of certificate has expired the error ist now:
    No file found. Error: unable to get local issuer certificate

    Any idea
    Ueli

    1. Ok. Found out myself. I reactivated ISRG_Root_X1.pem in /etc/ca-certificates.conf
      and now it works…

  3. Removing mozilla/ISRG_Root_X1.crt was not a good idea, but deactivating mozilla/DST_Root_CA_X3.crt alone did the job.

  4. you should not desactivate !mozilla/ISRG_Root_X1.crt
    I think it is better to do bbb-conf –setip instead of bbb-conf –restart

    1. Hello Rapheal,
      Yes, It was a mistake to deactivate ISRG_Root_X1 , I just edited the blog post.
      Why you think bbb-conf –setip is better ?

    1. May you give me your current OS release, OpenSSL version and output of that command journalctl -u bbb-html5 | grep error

Read Next

Sliding Sidebar