My domain is:
*.zone.co.za *.zonemail.co.za
I ran this command:
certbot certonly -d *.zone.co.za -d *.zonemail.co.za --force-renewal --standalone --pre-hook "systemctl stop apache-tomcat" --post-hook "systemctl start apache-tomcat" --renew-hook "/root/update-tomcat-cert.sh"
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Please enter in your domain name(s) (comma and/or space separated) (Enter 'c'
to cancel): *.zone.co.za *.zonemail.co.za
Running pre-hook command: systemctl stop apache-tomcat
Renewing an existing certificate for *.zone.co.za and *.zonemail.co.za
Performing the following challenges:
Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA. You may need to use an authenticator plugin that can do challenges over DNS.
Running post-hook command: systemctl start apache-tomcat
Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA. You may need to use an authenticator plugin that can do challenges over DNS.
My web server is (include version):
apache2_2.4.29-1ubuntu4.10_amd64.deb
Apache Tomcat/9.0.24
The operating system my web server runs on is (include version):
11.0.10+9-Ubuntu-0ubuntu1.20.04
My hosting provider, if applicable, is:
Linode/selfmanaged
I can login to a root shell on my machine (yes or no, or I don't know):
Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
certbot 1.13.0
DNS entries:
_acme-challenge.zone.co.za. TXT "thwpxlV-HXtOkRrdn1rWnq5Q8UNnSEOvgPqXNnJ9xkU"
_acme-challenge.zonemail.co.za. TXT "xMMJE8hTgAvhY9ElBZFULtq49g1Bxy5yAUg3Xx44jeU"
_acme-challenge.zonemail.co.za. TXT "Cy4xsvOs5R-cTAGqxupgQmA6qmGEYcHELo2MaY3tnrk"