Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
100s of domains failing. https://DavidFavor.com is 1x example.
I ran this command:
/snap/bin/certbot certonly --no-self-upgrade --non-interactive --rsa-key-size 4096 --email firstname.lastname@example.org --agree-tos --webroot -w /sites/david-favor/davidfavor.com/htdocs -d davidfavor.com -d www.davidfavor.com
It produced this output:
There were too many requests of a given type :: Error creating new order :: too many certificates already issued for exact set of domains: davidfavor.com,www.davidfavor.com: see https://letsencrypt.org/docs/rate-limits/
My web server is (include version):
lxd: net13-david-favor # apachectl -V | head
Server version: Apache/2.4.46 (Ubuntu)
Server built: 2020-08-10T12:32:13
Server's Module Magic Number: 20120211:93
Server loaded: APR 1.7.0, APR-UTIL 1.6.1
Compiled using: APR 1.6.5, APR-UTIL 1.6.1
Server MPM: event
threaded: yes (fixed thread count)
forked: yes (variable process count)
Server compiled with....
The operating system my web server runs on is (include version):
lxd: net13-david-favor # lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 20.04.1 LTS
My hosting provider, if applicable, is:
OVH dedicated machines.
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you're using Certbot):
lxd: net13-david-favor # snap list certbot
Name Version Rev Tracking Publisher Notes
lxd: net13-david-favor # certbot --version
Note: I require a workaround, because moving from APT certbot to SNAP certbot causes all wildcard domain renewals to fail (I'll debug this later under another ticket).
So I'm trying to fallback to simple certs.
Unfortunately I made the horrible mistake of doing an apt-get purge certbot, which destroyed all /etc/letsencrypt files.
So now I have only a few days to change all certs before many sites start dying.
I'm command line savvy, so anyone with a work around, let me know how to generate simple certs... else I'm in deep trouble in a few days.