I am migrating a website from one service provider to another (from Linode to Google Cloud). I require wildcard support, and, if I still understand correctly, Certbot and certbot-auto still do not provide support for DNS challenges (is this still true?)
So, I use acme.sh located at https://github.com/Neilpang/acme.sh
I just tried to create a new certificate, and I got the below error. So I have 2 questions:
-
I have valid certificates on the old server, but I’ll be deleting that server. Is it ok to just create new certificates on this new server, or could this be the issue?
-
As I type this, there is a huge RED Error at the top of the website saying “Service Disruption” - Could this be the issue? Could my new IP address for my google cloud instance have already issued certificates related to the same IP Address range?
I only tried to do this once, so it seems strange that this would happen unless its related to activity on the old server.
My domain is:
gastonia.com
I ran this command:
sudo ./.acme.sh/acme.sh --issue --nginx -d gastonia.com -d ‘*.gastonia.com’ --dns dns_cf
It produced this output:
[Mon Jul 30 22:34:09 UTC 2018] Multi domain=‘DNS:gastonia.com,DNS:*.gastonia.com’
[Mon Jul 30 22:34:09 UTC 2018] Getting domain auth token for each domain
[Mon Jul 30 22:34:10 UTC 2018] Create new order error. Le_OrderFinalize not found. {“type”:“urn
:ietf:params:acme:error:rateLimited”,“detail”:“Error creating new order :: too many failed auth
orizations recently: see https://letsencrypt.org/docs/rate-limits/","status”: 429}
[Mon Jul 30 22:34:10 UTC 2018] Please add ‘–debug’ or ‘–log’ to check more details.
[Mon Jul 30 22:34:10 UTC 2018] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.
sh
My web server is (include version):
nginx
The operating system my web server runs on is (include version):
Ubuntu 18.04 LTS
My hosting provider, if applicable, is:
Google Cloud Platform
I can login to a root shell on my machine (yes or no, or I don’t know):
Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
no, command line only / ssh