<!-- WP QUADS Content Ad Plugin v. 2.0.93 -->
<div class="quads-location quads-ad2527 " id="quads-ad2527" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<h2 class="wp-block-heading">Symptoms: </h2>



<p>Right after a fresh installation of Zammad you implement Let&#8217;s Encrypt and you are unable to login to your Zammad portal due to the following error.</p>
<!-- WP QUADS Content Ad Plugin v. 2.0.93 -->
<div class="quads-location quads-ad2531 " id="quads-ad2531" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<!-- WP QUADS Content Ad Plugin v. 2.0.93 -->
<div class="quads-location quads-ad2522 " id="quads-ad2522" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<!-- WP QUADS Content Ad Plugin v. 2.0.93 -->
<div class="quads-location quads-ad2523 " id="quads-ad2523" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>




<p>CSRF token verification failed!</p>



<figure class="wp-block-image size-large"><img src="https://www.moh10ly.com/wp-content/uploads/2021/02/image.png" alt="" class="wp-image-5524"/> 

<!-- WP QUADS Content Ad Plugin v. 2.0.93 -->
<div class="quads-location quads-ad2525 " id="quads-ad2525" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>
 
</figure>



<h2 class="wp-block-heading">Cause:</h2>



<p>When you install Zammad, it&#8217;ll automatically create a <strong>zammad.conf</strong> file under the path /etc/apache2/sites-enabled.</p>



<p>Until this moment your web page should be functioning normal, the problem starts when you implement the Let&#8217;s Encrypt certificate which creates another .conf file that would corrupt the web server and cause the error you&#8217;re having.</p>



<h2 class="wp-block-heading">Solution:</h2>



<p>To solve this problem simply, change the extension of the zammad-le-ssl.conf file into something else other than .conf and restart apache or nginx. </p>
<!-- WP QUADS Content Ad Plugin v. 2.0.93 -->
<div class="quads-location quads-ad2524 " id="quads-ad2524" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>




<figure class="wp-block-image size-large"><img src="https://www.moh10ly.com/wp-content/uploads/2021/02/image-1.png" alt="" class="wp-image-5525"/></figure>



<figure class="wp-block-image size-large"><img src="https://www.moh10ly.com/wp-content/uploads/2021/02/image-2.png" alt="" class="wp-image-5526"/></figure>



<h2 class="wp-block-heading"><strong>Solution 2:</strong></h2>



<p>You need to uncomment the &#8220;ServerTokens Prod&#8221; part in your configuration file if the solution 1 doesn&#8217;t work.</p>



<h2 class="wp-block-heading"><strong>Solution 3:</strong></h2>



<p>Beneath the SSO Setup you need to make sure to change the RequestHeader set X_FORWARDED_PROTO &#8216;http&#8217; to https as in the below line.</p>



<p>After you apply all those, you need to restart both apache and zammad services.</p>
<!-- WP QUADS Content Ad Plugin v. 2.0.93 -->
<div class="quads-location quads-ad2526 " id="quads-ad2526" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>




<h4 class="wp-block-heading">Here&#8217;s a working configuration of Zammad </h4>



<pre class="wp-block-code">

<div>::CODECOLORER_BLOCK_1::</div>

</pre>



<p></p>



<p>Hope this helps</p>



<p></p>
</p>
<!-- WP QUADS Content Ad Plugin v. 2.0.93 -->
<div class="quads-location quads-ad2529 " id="quads-ad2529" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>


Reset and manage your Active Directory users' Passwords Active Directory is one of the most…
Finding Exchange Database hidden mailboxes. Story:Maybe you have been in this situation before, trying to…
If you're using a Proxy server in your firewall or in your network and have…
Story:I got some clients that have reported some of their users being locked out and…
Delegate Permissions This is a code that I have wrote recently to check if an…
Story: I got a request from a client who constantly gets CVs and have to…