My domain is: voiceofaphoenix.com
I ran this command: sudo certbot renew --dry-run
It produced this output:
Cert is due for renewal, auto-renewing…
Could not choose appropriate plugin: The manual plugin is not working; there may be proble
ms with your existing configuration.
The error was: PluginError(‘An authentication script must be provided with --manual-auth-h
ook when using the manual plugin non-interactively.’,)
Attempting to renew cert (voiceofaphoenix.com) from /etc/letsencrypt/renewal/voiceofaphoen
ix.com.conf produced an unexpected error: The manual plugin is not working; there may be p
roblems with your existing configuration.
The error was: PluginError(‘An authentication script must be provided with --manual-auth-h
ook when using the manual plugin non-interactively.’,). Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/voiceofaphoenix.com/fullchain.pem (failure)
It looks like you got your original certificate by running certbot --manual or a similar command. In this case, Certbot has to prompt you to perform certain steps (like creating a file or a DNS record) and you have to confirm when you’ve done those steps.
The certbot renew command is designed to be run without any human intervention at all (automatically by your server, usually in the middle of the night), so it doesn’t have the ability to deal with the step where you have to be asked to confirm something. To renew a certificate that was obtained with --manual, you need to re-run the original Certbot command that you used to get the certificate the first time.
Depending on your setup, you might also be able to switch away from --manual to use a method that can allow Certbot to renew your certificate automatically. Do you know if there’s a particular reason that you used this method before?
I was playing about with AWS certificate manager instead of the letsencrypt that I have to renew each time. I can do either I just want it so every 90 days I don’t have to go through this.