Plesk is down: nginx: [emerg] "ssl_ciphers" directive is duplicate in /etc/sw-cp-server/conf.d/ssl.conf:1

Created:

2017-03-21 18:47:14 UTC

Modified:

2017-08-16 16:11:34 UTC

0

Was this article helpful?


Have more questions?

Submit a request

Plesk is down: nginx: [emerg] "ssl_ciphers" directive is duplicate in /etc/sw-cp-server/conf.d/ssl.conf:1

Applicable to:

  • Plesk 12.5 for Linux
  • Plesk Onyx for Linux

Symptoms

After the upgrade from Plesk 12.0, the sw-cp-service is down and can not be started manually:

# service sw-cp-server status
sw-cp-serverd is stopped
# service sw-cp-server start
Starting sw-cp-serverd: nginx: [emerg] "ssl_ciphers" directive is duplicate in /etc/sw-cp-server/conf.d/ssl.conf:1
[FAILED]

OR

Cannot enable PCI compliance mode:

# plesk sbin pci_compliance_resolver --enable
[2017-07-25 21:40:48] ERR [util_exec] proc_close() failed ['/usr/local/psa/admin/bin/sslmng' '--protocols' 'TLSv1.1 TLSv1.2' '--ciphers' 'EECDH+AESGCM+AES128:EECDH+AESGCM+AES256:EDH+AESGCM+AES128:EDH+AESGCM+AES256:EECDH+SHA256+AES128:EECDH+SHA384+AES256:EDH+SHA256+AES128:EDH+SHA256+AES256:EECDH+SHA1+AES128:EECDH+SHA1+AES256:EDH+SHA1+AES128:EDH+SHA1+AES256:EECDH+HIGH:EDH+HIGH:AESGCM+AES128:AESGCM+AES256:SHA256+AES128:SHA256+AES256:SHA1+AES128:SHA1+AES256:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!KRB5:!aECDH:!EDH+3DES'] with exit code [1]
sslmng failed: ERROR:failed to configure sw-cp-server service: Command '['/usr/local/psa/admin/sbin/pleskrc', 'sw-cp-server', 'reload']' returned non-zero exit status 6

WARNING:Ignoring unsuppored protocol
INFO: [Tue Jul 25 20:40:50 MST 2017]: Serice: sw-cp-server, Action: reload
Trying to reload service sw-cp-server... sw-cp-serverd (pid  15390) is running...

WARNING!
Some problems are found during reload service sw-cp-server(see log file: /var/log/plesk/rc_actions.log)

Continue...

ERROR:failed to configure sw-cp-server service: Command '['/usr/local/psa/admin/sbin/pleskrc', 'sw-cp-server', 'reload']' returned non-zero exit status 6
already modified... already modified... already modified... already modified... already modified... already modified... already modified... already modified... service dovecot is not installed, skip modifying.
exit status 1

Cause

Duplicated directives in /etc/sw-cp-server/conf.d/pci-compliance.conf and /etc/sw-cp-server/conf.d/ssl.conf files.

This is Plesk bug with ID #PPPM-5964 which will be fixed in future updates.

Resolution

  1. Login to the server over SSH

  2. Remove the /etc/sw-cp-server/conf.d/pci-compliance.conf file and start 'sw-cp-server' service:

    # rm -f /etc/sw-cp-server/conf.d/pci-compliance.conf
    # service sw-cp-server start

Have more questions? Submit a request
Please sign in to leave a comment.