Auto-renew of letsencrypt-win-simple-v1.9.1.1 fails

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: whatapleasure.co.za

I ran this command: C:\Users\Administrator\Desktop\letsencrypt\letsencrypt-win-simple-v1.9.1.1\letsencrypt.exe --renew --baseuri “https://acme-v01.api.letsencrypt.org/” (it runs daily on task scheduler, but does not renew the cert)

It produced this output: Task Scheduler successfully finished “{ac540554-6d59-4479-9c00-bae36b3ec05c}” instance of the “\letsencrypt-win-simple httpsacme-v01.api.letsencrypt.org” task for user “BAD002_TRUSERV_\Administrator”.

My web server is (include version): IIS 8.5

The operating system my web server runs on is (include version): Windows Server 2012 R2 Standard

My hosting provider, if applicable, is: Hetzner selfmanaged server

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

Hi @Badenhorst

there is an older check of your domain - https://check-your-website.server-daten.de/?q=whatapleasure.co.za

Domainname Http-Status redirect Sec. G
http://whatapleasure.co.za/
129.232.195.34 301 https://whatapleasure.co.za/ 0.376 A
http://www.whatapleasure.co.za/
129.232.195.34 301 https://www.whatapleasure.co.za/ 0.380 A
https://whatapleasure.co.za/
129.232.195.34 200 2.207 B
https://www.whatapleasure.co.za/
129.232.195.34 -4 0.740 W
SendFailure - The underlying connection was closed: An unexpected error occurred on a send. Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host.
http://www.whatapleasure.co.za:443/
129.232.195.34 -3 0.733 A
ReceiveFailure - The underlying connection was closed: An unexpected error occurred on a receive. Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host.
Visible Content:
http://whatapleasure.co.za/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
129.232.195.34 301 https://whatapleasure.co.za/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 0.380 A
Visible Content: Object Moved This document may be found here
http://www.whatapleasure.co.za/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
129.232.195.34 301 https://www.whatapleasure.co.za/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 0.373 A
Visible Content: Object Moved This document may be found here
https://whatapleasure.co.za/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 404 1.750 A
Not Found
Visible Content: Server Error 404 - File or directory not found. The resource you are looking for might have been removed, had its name changed, or is temporarily unavailable.
https://www.whatapleasure.co.za/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de -4 0.786 W
SendFailure - The underlying connection was closed: An unexpected error occurred on a send. Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host.

http redirects to https. Normally, this isn't a problem. But your https + www doesn't work, so checking a file in https + www + /.well-known/acme-challenge can't work.

But your non-www version works, so if you want only a certificate with the non-www domain name, then it should work.

I don't use that client. Is there an error log?

Hi @JuergenAuer. Thanks for the advice. I disabled the redirect and created a certificate for www.whatapleasure.co.za too, but the autorenew is still not happening. I can’t find any errors. This is the response of the auto renew process:
2019-04-16 09:00 - Created Task Process - Task Scheduler launch task “\letsencrypt-win-simple httpsacme-v01.api.letsencrypt.org” , instance “C:\Users\Administrator\Desktop\letsencrypt\letsencrypt-win-simple-v1.9.1.1\letsencrypt.exe” with process ID 820.

2019-04-16 09:00 - Task Started - Task Scheduler started “{86356C54-3633-4D3E-871A-FBC8B45C0B7C}” instance of the “\letsencrypt-win-simple httpsacme-v01.api.letsencrypt.org” task for user “BAD002_TRUSERV_\Administrator”.

2019-04-16 09:00 - Action started - Task Scheduler launched action “C:\Users\Administrator\Desktop\letsencrypt\letsencrypt-win-simple-v1.9.1.1\letsencrypt.exe” in instance “{86356C54-3633-4D3E-871A-FBC8B45C0B7C}” of task “\letsencrypt-win-simple httpsacme-v01.api.letsencrypt.org”.

2019-04-16 09:00 - Action completed - Task Scheduler successfully completed task “\letsencrypt-win-simple httpsacme-v01.api.letsencrypt.org” , instance “{86356C54-3633-4D3E-871A-FBC8B45C0B7C}” , action “C:\Users\Administrator\Desktop\letsencrypt\letsencrypt-win-simple-v1.9.1.1\letsencrypt.exe” with return code 0.

2019-04-16 09:00 - Task completed - Task Scheduler successfully finished “{86356C54-3633-4D3E-871A-FBC8B45C0B7C}” instance of the “\letsencrypt-win-simple httpsacme-v01.api.letsencrypt.org” task for user “BAD002_TRUSERV_\Administrator”.

This is the result of my attempt to run it from the command prompt:
C:\Users\Administrator\Desktop\letsencrypt\letsencrypt-win-simple-v1.9.1.1>letsencrypt.exe --renew --baseuri https://acme-v01.api.letsencrypt.org
Let’s Encrypt (Simple Windows ACME Client)
Renewal Period: 60
Certificate Store: WebHosting

ACME Server: https://acme-v01.api.letsencrypt.org
Config Folder: C:\Users\Administrator\AppData\Roaming\letsencrypt-win-simple\httpsacme-v01.api.letsencrypt.org
Certificate Folder: C:\Users\Administrator\AppData\Roaming\letsencrypt-win-simple\httpsacme-v01.api.letsencrypt.org
Loading Signer from C:\Users\Administrator\AppData\Roaming\letsencrypt-win-simple\httpsacme-v01.api.letsencrypt.org\Signer

Getting AcmeServerDirectory
Loading Registration from C:\Users\Administrator\AppData\Roaming\letsencrypt-win-simple\httpsacme-v01.api.letsencrypt.org\Registration
Checking Renewals
No scheduled renewals found.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.