Certificate Generation Detail:
Used Certbot Standalone Mode to Retrieve Certificates.
Web server:
NGINX 1.7.0
Nodejs 9.11.1
Certbot Version:
2.5.0
I ran this command:
sudo certbot renew --noninteractive --force-renew
It produced this output:
Failed to renew certificate mydomain.com with error: 'Authenticator' object has no attribute 'restart'
The operating system my web server runs on is (include version):
NAME="Amazon Linux AMI"
VERSION="2018.03"
ID_LIKE="rhel fedora"
VERSION_ID="2018.03"
PRETTY_NAME="Amazon Linux AMI 2018.03"
I can login to a root shell on my machine:
Yes
Error Log in letsencrypt.log
File "/usr/mysafevirtualenv/lib/python3.8/dist-packages/certbot/_internal/renewal.py", line 559, in handle_renewal_request
raise errors.Error(
certbot.errors.Error: 1 renew failure(s), 0 parse failure(s)
2023-04-06 11:36:19,680:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s)
As said, there's nothing to force if Certbot errors out. If you tried to use --force-renewal to let Certbot ignore erros, then please educate yourself about the meaning of the option by reading the Certbot documentation, as this is incorrect usage of a fairly 'dangerous' option (with regard to rate limits).
Please post the log and cli.ini, then we maybe can look further.
They would renew if they could.
But they can't due to some error(s).
Trying to force a renewal through those error(s) won't work.
The error(s) must be corrected first.
I get following response "Certificate not yet due for renewal" when trying to create certificate without "--force-renew" option. I basically wanted to test the renew for myself. Any help would be appreciated.
So that It does not fail in cron Task when I automate it for next renewal.
Thank you for your reply BTW!
I hope using test environment would guarantee successful renewal of the certificate in future. Thanks again!
I've one more question for you. I could not find any cli.ini at /etc/letsencrypt/, hence I created one myself by adding following configuration options to it:
email = my-email@example.com
server = https://acme-v02.api.letsencrypt.org/directory
Would this be enough? Or have I missed something that I should have added?
Your reply would be greatly appreciated.
Thanks in Advance.