I have received a couple of emails over the past few months from LetsEncrypt stating that I need to “upgrade to an ACMEv2 compatible client” (extract from the email is below).
However I’m using the LetsEncrypt certbot client - the latest version I used at the time was 1.3.0, it has since auto-updated to 1.4.0.
I run the certbot script (manual) on a separate Debian Jessie VM then manually install the certificate / private key using my hosting provider’s cPanel (I haven’t seen any cPanel plugins for Lets Encrypt from my hosting provider so I have been using this manual process for a number of years without issue).
Do I need to upgrade anything else before the June 1, 2020 deadline for support of the ACMEv1 protocol running out?
I would have thought that the certbot scripts (which do auto-update pretty much every time I run them every three months) should automatically update to NOT use ACMEv1.
Perhaps there are other components I need to update e.g. the Debian distro itself (jessie, which I admit is getting old now - LTS ends on June 30, 2020)
Hi, According to our records, the software client you're using to get Let's Encrypt TLS/SSL certificates issued or renewed at least one HTTPS certificate in the past two weeks using the ACMEv1 protocol. Here are the details of one recent ACMEv1 request from each of your account(s): Client IP address: 2001:8003:5cae:cf00:a00:27ff:fe1b:35f0 User agent: CertbotACMEClient/1.3.0 (letsencrypt-auto; Debian GNU/Linux 9 (stretch)) Authenticator/manual Installer/None (certonly; flags: ) Py/2.7.13 Hostname(s): "[seswhiteboard.com.au](http://seswhiteboard.com.au/)","[www.seswhiteboard.com.au](http://www.seswhiteboard.com.au/)" Request time: 2020-05-03 01:32:34 UTC Beginning June 1, 2020, we will stop allowing new domains to validate using the ACMEv1 protocol. You should upgrade to an ACMEv2 compatible client before then, or certificate issuance will fail. For most people, simply upgrading to the latest version of your existing client will suffice. You can view the client list at: https://letsencrypt.org/docs/client-options/
My domain is: seswhiteboard.com.au
I ran this command: ./manual seswhiteboard.com.au www.seswhiteboard.com.au
It produced this output:
My web server is (include version): Hosted service
The operating system my web server runs on is (include version): Linux 3.10.0-962.3.2.lve188.8.131.52.el7.x86_64
I can login to a root shell on my machine (yes or no, or I don’t know): Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): cPanel 86.0.20
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you’re using Certbot): 1.3.0