I think I made a mistake and now my setup is somewhat broken. I’ve migrated domain2.de to another server and got another certificate via the hoster there. Everything is fine with this domain.
Aftwards, I’ve somehow deleted the certificate file with rm.
If I renew now the other certificates on my server, I run into the error below.
Locally on my VPS, I’ve got 3 TLDs and a few subdomains.
I assume certbot somehow has an internal database or similar where the domain2.de is still present since I’ve only deleted the certificate manually?
How would I “rebuild” this database?
It seems as if I can’t use certbot revoke:
2020-09-09 04:26:45,505:DEBUG:certbot.main:Arguments: [’–cert-name’, ‘www.domain2.de’]
2020-09-09 04:26:45,506:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2020-09-09 04:26:45,517:DEBUG:certbot.log:Root logging level set at 20
2020-09-09 04:26:45,518:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2020-09-09 04:26:45,519:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
File “/usr/bin/certbot”, line 11, in
load_entry_point(‘certbot==0.31.0’, ‘console_scripts’, ‘certbot’)()
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1365, in main
return config.func(config, plugins)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1058, in revoke
config.cert_path = storage.cert_path_for_cert_name(config, config.certname)
File “/usr/lib/python3/dist-packages/certbot/storage.py”, line 64, in cert_path_for_cert_name
cert_name_implied_conf = renewal_file_for_certname(config, cert_name)
File “/usr/lib/python3/dist-packages/certbot/storage.py”, line 53, in renewal_file_for_certname
“{1}).”.format(certname, path))
certbot.errors.CertStorageError: No certificate found with name www.domain2.de (expected /etc/letsencrypt/renewal/www.domain2.de.conf).
My domain is:
Two different ones
I ran this command:
certbot renew
It produced this output:
Attempting to renew cert (www.domain1.de) from /etc/letsencrypt/renewal/www.domain1.de.conf produced an unexpected error: Failed authorization procedure. www.domain2.de (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.domain2.de/.well-known/acme-challenge/ccCP9hI_ElmBMYxk7Z9u8gNsTjbMpC9RDxh-OmsCZwE [2001:8d8:100f:f000::2e8]: 204. Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/www.domain1.de/fullchain.pem (failure)
My web server is (include version):
nginx version: nginx/1.14.2
The operating system my web server runs on is (include version):
Debian GNU/Linux 10 \n \l
My hosting provider, if applicable, is:
VPS
I can login to a root shell on my machine (yes or no, or I don’t know):
yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot):
certbot 0.31.0