Certbot debian 8

Help
1

My domain is:

I ran this command: certbot renew

It produced this output: bash: certbot:

Saving debug log to /var/log/letsencrypt/letsencrypt.log

Processing /etc/letsencrypt/renewal/

Attempting to parse the version 1.4.0 renewal configuration file found at /etc/letsencrypt/renewal/.conf with version 0.10.2 of Certbot. This might not work.
Cert not yet due for renewal

Processing /etc/letsencrypt/renewal/.conf

Cert is due for renewal, auto-renewing…
Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
Renewing an existing certificate
Attempting to renew cert from /etc/letsencrypt/renewal/.conf produced an unexpected error: urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Error creating new authz :: Validations for new domains are disabled in the V1 API (End of Life Plan for ACMEv1). Skipping.

Processing /etc/letsencrypt/renewal/.conf

Cert not yet due for renewal

The following certs are not due for renewal yet:
/etc/letsencrypt/live//fullchain.pem (skipped)
/etc/letsencrypt/live//fullchain.pem (skipped)
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live//fullchain.pem (failure)
1 renew failure(s), 0 parse failure(s)

My web server is (include version): nginx version: nginx/1.15.12

The operating system my web server runs on is (include version): debian 8.11

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 0.10.2

Before everything worked fine, but I had to update because of acme v1, suddenly I reinstall apt-get install certbot python-certbot-nginx, but it gives me errors now when I want to renew the certificates

2

You might want to consider not running a version of certbot out of 2017. Try again after you've upgraded the software. It seems you used to have version 1.4.0, which is odd for Debian. Have you used the certbot-auto script in the past perhaps?

3

i am using debian 8.11, how can i upgrade? apt-get update doesn’t seem to update certbot and I don’t think I used certbot auto

Maybe I have a version conflict? I don’t really know, especially that I have to renew my certificate before 5 days =]

4

Je peux lire des réponses en Anglais : yes

Mon nom de domaine est : *.chaat.fr

J’ai exécuté cette commande : certbot renew

Elle a produit cette sortie : bash:

Saving debug log to /var/log/letsencrypt/letsencrypt.log

Processing /etc/letsencrypt/renewal/npng.chaat.fr.conf

Attempting to parse the version 1.4.0 renewal configuration file found at /etc/letsencrypt/renewal/npng.chaat.fr.conf with version 0.10.2 of Certbot. This might not work.
Cert not yet due for renewal

Processing /etc/letsencrypt/renewal/tchat.chaat.fr.conf

Cert is due for renewal, auto-renewing…
Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
Renewing an existing certificate
Attempting to renew cert from /etc/letsencrypt/renewal/tchat.chaat.fr.conf produced an unexpected error: urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Error creating new authz :: Validations for new domains are disabled in the V1 API (End of Life Plan for ACMEv1). Skipping.

Processing /etc/letsencrypt/renewal/v1.chaat.fr.conf

Cert not yet due for renewal

The following certs are not due for renewal yet:
/etc/letsencrypt/live/npng.chaat.fr/fullchain.pem (skipped)
/etc/letsencrypt/live/v1.chaat.fr/fullchain.pem (skipped)
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/tchat.chaat.fr/fullchain.pem (failure)
1 renew failure(s), 0 parse failure(s)

Mon serveur Web est (inclure la version) : nginx version: nginx/1.15.12

Le système d’exploitation sur lequel mon serveur Web s’exécute est (version incluse) : debian 8.11

Mon hébergeur, le cas échéant, est :

Je peux me connecter à un shell root sur ma machine (oui ou non, ou je ne sais pas) : oui

J’utilise un panneau de configuration pour gérer mon site (non, ou fournit le nom et la version du panneau de configuration) : non

Version certbot : certbot 0.10.2

Avant tout fonctionnait bien,mais j’ai du faire une mise à jour à cause du acme v1 , du coup j’ai réinstaller apt-get install certbot python-certbot-nginx , mais ça me produit des erreurs maintenant quand je veux renouveller les certificats

5

You need a newer version of Certbot.

Debian 8 (Jessie) is “end of life” since June 30 2020, meaning it does not receive updates, and Certbot is not packaged for it.

You will need to upgrade to at least Debian 9 (Stretch). Then you may follow the instructions on https://certbot.eff.org/lets-encrypt/debianstretch-nginx to upgrade your Certbot.

1 Like
6

Do I have to upgrade to debian 9 to renew my certificates?

7

Yes, that would be the only supported way to continue using Certbot. These are the old instructions for Debian 8, but they will likely stop working in the future.

I think @Osiris is right that you used certbot-auto previously. Maybe try find whether it’s on your system:

find / -type f -name certbot-auto

If it’s there, you can just try run certbot-auto renew.

1 Like
8

Ok thanks i will test that

9

its works , thanks :slight_smile:

10

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.