Certbot renew to correct TLS-SNI-01 issue, but fails "not due for renewal"


#1

I’m trying to use certbot renew to correct TLS-SNI-01 issue, but it fails “not due for renewal”. The dry run works fine. I know it’s not due for renewal, but how can I correct the TLS-SNI-01 issue BEFORE having to wait for the renewal window? I’ve received several emails reminding me to correct this issue, but I can’t at this time before the renewal window.

Thanks,
TJ O’Donnell


#2

If you insist, then force a renewal with:
--force-renewal
but be sure to also add:
--preferred-challenges http
[or you will just force a regular renewal (TLS-SNI-01)]


#3

If a dry run is working and uses HTTP-01, you don’t have to do anything else. Certbot will switch to HTTP-01 when the time comes. You don’t have to force it to renew now.


closed #4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.