I assume the problem is that I didn’t know what I did when I set up the certificates. I’m mainy running WordPress on my server. When I installed the certificate, I assumed I had to enter subdomains. Apparently this causes confusion upon renewal.
Assuming theres some clash between certificates, I removed the grendel.no ceritifcate, using
certbot delete grendel.no
grendel.no was deleted, but I cant create a new certificate. I enclose what happend just before I messed things up.
My domain is:
grendel.no
I ran this command:
certbot renews
It produced this output:
Processing /etc/letsencrypt/renewal/grendel.no.conf
Cert is due for renewal, auto-renewing…
Plugins selected: Authenticator apache, Installer apache
Renewing an existing certificate
Performing the following challenges:
tls-sni-01 challenge for grendel.no
Waiting for verification…
Cleaning up challenges
Attempting to renew cert (grendel.no) from /etc/letsencrypt/renewal/grendel.no.conf produced an unexpected error: Failed authorization procedure. grendel.no (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested 08252ab848ea986bceda578e98f0b6ae.cf4bda6dc8f0b2dec74b68258fdfbbce.acme.invalid from 46.226.13.198:443. Received 2 certificate(s), first certificate had names “blog.
grendel.no, grendel.no, ptsd-boken.grendel.no, quaintworld.grendel.no, r.grendel.no, www.grendel.no”. Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/grendel.no/fullchain.pem (failure)
My web server is (include version):
Server version: Apache/2.4.18 (Ubuntu)
The operating system my web server runs on is (include version):
Ubuntu 16.04.3 LTS
My hosting provider, if applicable, is:
www.webhuset.no
I can login to a root shell on my machine (yes or no, or I don’t know):
Yes.
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
No