Hi Team,
My domain uses the Let's Encrypt certificate for SSL communication. I can generate the certificate but I can not able to renew the certificate. I am using apache httpd configuration.
I have explicitly verified the ACME using the below command.
curl -v http://everprint.io/.well-known/acme-challenge/test
curl -v http://myeverbee.io/.well-known/acme-challenge/test
My domain is: everprint.io, www.everprint.io, myeverbee.io, www.myeverbee.io
I ran this command: sudo certbot renew --dry-run -v
It produced this output:
letsencrypt.txt (111.4 KB)
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Processing /etc/letsencrypt/renewal/everprint.io.conf
Certificate not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator apache, Installer apache
Simulating renewal of an existing certificate for everprint.io and www.everprint.io
Performing the following challenges:
http-01 challenge for everprint.io
http-01 challenge for www.everprint.io
Waiting for verification...
Challenge failed for domain everprint.io
http-01 challenge for everprint.io
Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Domain: everprint.io
Type: connection
Detail: 52.9.2.39: Fetching http://everprint.io/.well-known/acme-challenge/KM8sjWVdWRTXjgxEallYGCHMkGhRaeKTSm7Q44GUINw: Timeout during connect (likely firewall problem)
Hint: The Certificate Authority failed to verify the temporary Apache configuration changes made by Certbot. Ensure that the listed domains point to this Apache server and that it is accessible from the internet.
Cleaning up challenges
Failed to renew certificate everprint.io with error: Some challenges have failed.
Processing /etc/letsencrypt/renewal/myeverbee.io.conf
Certificate not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator apache, Installer apache
Simulating renewal of an existing certificate for myeverbee.io and www.myeverbee.io
Performing the following challenges:
http-01 challenge for myeverbee.io
http-01 challenge for www.myeverbee.io
Waiting for verification...
Challenge failed for domain myeverbee.io
Challenge failed for domain www.myeverbee.io
http-01 challenge for myeverbee.io
http-01 challenge for www.myeverbee.io
Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Domain: myeverbee.io
Type: connection
Detail: 52.9.2.39: Fetching http://myeverbee.io/.well-known/acme-challenge/tCPCh5YrrJqpcgkO-eOCys6t2JmiSuQg4_tEo8MMli4: Timeout during connect (likely firewall problem)
Domain: www.myeverbee.io
Type: connection
Detail: 52.9.2.39: Fetching http://www.myeverbee.io/.well-known/acme-challenge/pY9pulLWWRmN2rgJni8EZ2jE-pmfWm7LbqsAOe904rg: Timeout during connect (likely firewall problem)
Hint: The Certificate Authority failed to verify the temporary Apache configuration changes made by Certbot. Ensure that the listed domains point to this Apache server and that it is accessible from the internet.
Cleaning up challenges
Failed to renew certificate myeverbee.io with error: Some challenges have failed.
All simulated renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/everprint.io/fullchain.pem (failure)
/etc/letsencrypt/live/myeverbee.io/fullchain.pem (failure)
2 renew failure(s), 0 parse failure(s)
My web server is (include version): Apache/2.4.58 (Ubuntu)
The operating system my web server runs on is (include version):Ubuntu 24.04.1 LTS
My hosting provider, if applicable, is: Namecheap
I can login to a root shell on my machine (yes or no, or I don't know): Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):certbot 2.9.0