autoSSL not renewing

marcdiffey · June 7, 2024, 1:57am

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: marlinsolutions.com.au

I ran this command: ssl auto renew

It produced this output: this ssl has expired and is not autorenewing

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know): no

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): cpanel

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):???

MikeMcQ · June 7, 2024, 2:49am

Welcome @marcdiffey

That DNS has a CNAME to your registered name. And, that has two IP addresses in the public DNS

nslookup autodiscover.marlinsolutions.com.au
autodiscover.marlinsolutions.com.au  
      canonical name (CNAME) = marlinsolutions.com.au.
Name:   marlinsolutions.com.au
Address: 192.0.78.184
Address: 192.0.78.237

Is this a load balancer or some kind of caching service? If so, has it always been setup that way? Because this would be difficult to get working like that and especially so under cPanel. Seems like maybe something changed in your configuration.

As further info, if I send a test HTTP Challenge I get a faulty response. I should get a 404 for this test since that URI won't be found. But, I get a 200 with a short value of "WP.com". If you look at your cPanel log you'll probably see the same 200 reply for your actual cert request.

# Test HTTP Challenge gets redirected to HTTPS
# Redirecting is supported but ... 
curl -i http://marlinsolutions.com.au/.well-known/acme-challenge/Test404
HTTP/1.1 301 Moved Permanently
Server: nginx
Location: https://marlinsolutions.com.au/.well-known/acme-challenge/Test404
X-ac: 4.dca _dca BYPASS

# This should return a 404 Not Found
# Maybe it would return the correct reponse for a real request 
# But this usually points to a configuration problem in your system
curl -i https://marlinsolutions.com.au/.well-known/acme-challenge/Test404
HTTP/2 200
server: nginx
x-ac: 5.dca _dca MISS

# Data returned is just these 6 characters
WP.com

system · July 7, 2024, 2:49am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Automatic renewal Help	2	955	September 15, 2019
AutoSSL did not renew the certificates of these two doms Help	7	782	March 23, 2023
autoSSL not auto renew for all user Help	4	1581	September 21, 2020
Renewed certificate needed urgently Help	5	815	April 27, 2018
Letsencrypt-auto renew no longer works Help	3	782	February 14, 2019

autoSSL not renewing

Related Topics