Certificate signature failed. If you supplied your own CSR make sure the domains on it match what you put on SSLForFree. If there is a rate limiting error at the end of this paragraph certificates per Domain is currently 5 per 7 days. Try asking Lets Encrypt to increase the limit or wait 7 days. Rate limits should increase in the near future. { “type”: “urn:acme:error:rateLimited”, “detail”: “Error creating new cert :: too many certificates already issued for exact set of domains: fitnessforlifefactory.com”, “status”: 429 }
Hi
How do I go about increasing the limit of the number of certs I have created? I think I have tried to get 5 certs installed in the last couple of days however my hosts say there is a problem with the certs I’m sending them. All I nee is for Let’s Encrpt to increase it so I can set up a new cert.
What website provided this advice? It’s inaccurate far multiple reasons, including the notion that Let’s Encrypt can or will alter rate limits faster than they expire naturally.
Give us a bit more info on what you’re trying to do and how you’re going about it, and let’s see if we can solve the root of the problem.
Are you trying to secure a cluster of servers and issuing them each individual certs (for the exact same set of names)?
You seem to be issuing multiple certs for the exact same set of names on the same day: https://crt.sh/?q=%fitnessforlifefactory.com
Problem is that the SSL cert runs out in 2 days and also my hosts have given me a different method to upload the SSL cert, they’ve changed their policy as this method isn’t secure enough.
The problem with my previous certs, they are saying that it CSR and cert do not match.
My hosts are HostGator (unfortunately) However this isn’t the first time they’ve attempted to install a cert so they have done this before.
So I’ve managed to actually download the SSL cert and I’m my hosts are in the process of installing it however they are saying that the CSR and the Cert is wrong (not really sure how) but okay I’ll take their word for it.
So here I am trying to starting from scratch and trying to get a brand new cert installed, that’s where we are at the moment.
What’s happening here isn’t a problem with issuance, so there’s no reason to keep trying that. It’s an issue with either what you’re sending or how. I’m concerned that you keep saying you’re sending the “cert and CSR” to HostGator. They should not need the CSR, as it provides no additional information beyond that in the certificate. You should be sending the certificate and the key.
Could you post just the first line of each file you’re sending HostGator, along with their corresponding filenames? The first line should look something like this:
I assume you’re after the SSL Certificate, the 2048 Bit RSA Key and the CA Bundle right?
That has already been sent to hostgator but as they’ve now attempted to process it (they sent me incorrect instructons of how to send it to them) and thus deleted I’m unable to give you what you’re asking for however what they’re asking me to do is sent the cert to them again albeit this time via the cpanel file manager.
So now I guess the question is how can I get a copy of the info on a previous cert I setup on here so that I can send the cert info over to Hostgator via their cpanel?
Why? Why did you delete them before they were successfully processed?
The cert itself is easy; you can look it up on crt.sh (likely among other places). However, if you deleted the key, it's gone, and the cert isn't any good without the key.
I didn’t delete them they did, the reason is because they had originally sent me instructions on how to upload the info and then when I did that they sent me an email saying:
The RSA key is considered as sensitive information and we no longer accept it in plain text via an email or ticket response.
So they destroyed it and want me to upload it again - thanks for the link
