C'ant activate my reverse proxy

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: cloud.neilz.ovh

I ran this command: sudo certbot --nginx -d cloud.neilz.ovh

It produced this output: An unexpected error occurred:
requests.exceptions.SSLError: HTTPSConnectionPool(host='acme-v02.api.letsencrypt.org', port=443): Max retries exceeded with url: /directory (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: certificate is not yet valid (_ssl.c:1131)')))

My web server is (include version): An Nginx Reverse Proxy

The operating system my web server runs on is (include version): Ubuntu server 22.04 LTS

My hosting provider, if applicable, is: ORANGE

I can login to a root shell on my machine (yes or no, or I don't know): YES

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): NO

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 1.28.0

1 Like

The current certificate for the ACME API endpoint is valid from Apr 26 22:36:12 2022 GMT but yet your system says it's not valid yet... How off is your date/time?

# curl -v http://cloud.neilz.ovh
*   Trying
* Connected to cloud.neilz.ovh ( port 80 (#0)
< HTTP/1.1 200 OK
< Server: nginx/1.18.0 (Ubuntu)
< Date: Fri, 22 Apr 2022 21:40:24 GMT

Your servers system time is off by almost 50 days.


Thank you so much, guys for your help. The date was wrong...
I feel like an idiot right now !

Have a great day :wink:


Smart trick :smiley:

Tip: use a NTP daemon.


I'll do it, thanks


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.