Certbot renew : Failed authorization procedure

Hello all,

i got an email asking me to update my server because TLS won’t be supported anymore.
So i have run those commands, but i am getting an autorisation error.
Do you know what, should i do ?

pi@raspberrypi:/etc/apache2/sites-available $ sudo certbot renew --dry-run
Saving debug log to /var/log/letsencrypt/letsencrypt.log


Processing /etc/letsencrypt/renewal/nextcloud-vosberg.duckdns.org.conf


Cert is due for renewal, auto-renewing…
Plugins selected: Authenticator apache, Installer apache
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for nextcloud-vosberg.duckdns.org
Waiting for verification…
Cleaning up challenges
Attempting to renew cert (nextcloud-vosberg.duckdns.org) from /etc/letsencrypt/renewal/nextcloud-vosberg.duckdns.org.conf produced an unexpected error: Failed authorization procedure. nextcloud-vosberg.duckdns.org (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://nextcloud-vosberg.duckdns.org/.well-known/acme-challenge/4yyA7XIKD9rWj4Bm-715VHNwwFj2wmoQPaOCVPLmHSY [109.133.8.135]: “\n\n404 Not Found\n\n

Not Found

\n<p”. Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/nextcloud-vosberg.duckdns.org/fullchain.pem (failure)

** DRY RUN: simulating ‘certbot renew’ close to cert expiry
** (The test certificates below have not been saved.)

All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/nextcloud-vosberg.duckdns.org/fullchain.pem (failure)
** DRY RUN: simulating ‘certbot renew’ close to cert expiry
** (The test certificates above have not been saved.)


1 renew failure(s), 0 parse failure(s)

IMPORTANT NOTES:

Hi @HuTcHx.007

as written there:

Switch to the webroot authenticator, if the apache authenticator doesn't work.

Thank you for your quick reply.

I have found this link : https://code.luasoftware.com/tutorials/lets-encrypt/lets-encrypt-ssl-using-webroot-authenticator/

Just to be sure, should i follow those steps ?
Or you have a better recommandation ?

Thank you.

Please use User Guide — Certbot 1.21.0 documentation - that's the only source you need.

The other link has already the complete command.

Thank you.

Will try to check that.

i hope to renieuw my certificate easily :slight_smile:

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.