Can't renew my certificate

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: pass.wsrn.team

I ran this command: certbot renewal

It produced this output:
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/pass.wsrn.team/fullchain.pem (failure)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1 renew failure(s), 0 parse failure(s)

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: pass.wsrn.team
   Type:   unauthorized
   Detail: Invalid response from
   http://pass.wsrn.team/.well-known/acme-challenge/5qRfFuvHyUBPLxQqNlSdbPC537ye4f7RJane0E6RYG0
   [157.230.104.214]: "<!DOCTYPE html>\n<html class=\"passbolt no-js
   no-passboltplugin version\" lang=\"en\">\n<head>\n    <meta
   charset=\"utf-8\"/>\n    <title>"

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address.
root@passbolt-s-1vcpu-1gb-fra1-01:/etc/nginx# certbot certificates
Saving debug log to /var/log/letsencrypt/letsencrypt.log

My web server is (include version):
Distributor ID: Ubuntu
Description: Ubuntu 18.04.2 LTS
Release: 18.04
Codename: bionic

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is: digitalocean

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 0.31.0

and now I also have hit the rate-limit.

Now I don’t no how to proceed, please help.

Thanks Nikolai

Hi @grafruessel

checking the url

http://pass.wsrn.team/.well-known/acme-challenge/5qRfFuvHyUBPLxQqNlSdbPC537ye4f7RJane0E6RYG0

there is something like

    home
    login

Not Found

The requested address was not found on this server. Please double check the url. Maybe the page was deleted or moved.

    Terms
    Credits
    Versions

Checking the source code there is something

     ____                  __          ____
       / __ \____  _____ ____/ /_  ____  / / /_
      / /_/ / __ `/ ___/ ___/ __ \/ __ \/ / __/
     / ____/ /_/ (__  )__  ) /_/ / /_/ / / /_
    /_/    \__,_/____/____/_.___/\____/_/\__/

    Open source password manager for teams
    Copyright (c) Passbolt SARL (https://www.passbolt.com)

Looks like there is another program that answers.

You use a nginx, there is a check of your domain ( https://check-your-website.server-daten.de/?q=pass.wsrn.team ):

What’s your root?

Create the two subdirectories

root/.well-known/acme-challenge

there a file (file name 1234), then check, if you are able to load that file via

 http://pass.wsrn.team/.well-known/acme-challenge/1234

If that works, you have found your correct webroot. Then use it:

certbot run -a webroot -i nginx -w yourRoot -d pass.wsrn.team

Hi Juergen, thanks that helped.
for me new to shell I had to figure chown out.
But after that all fine.

Thanks.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.