How to upgrade ACMEv2 please help
Hi,
We need more information in order to understand your question.
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of
certbot --versionorcertbot-auto --versionif you're using Certbot):
Thank you
1 Like
Hi, are you using Linux or Windows to host your website? Are you using the certbot tool or something else?
Hi,
I received mail from Let’s Encrypts after read thoroughly I didn’t understand the meaning of below underlying sentence.
So please help me how can I upgrade from ACMEv1 to ACMEv2
According to our records, the software client you’re using to get Let’s
Encrypt TLS/SSL certificates issued or renewed at least one HTTPS certificate
in the past two weeks using the ACMEv1 protocol. Here are the details of one
recent ACMEv1 request from each of your account(s):
Client IP address: 117.255.217.218
User agent: synology_avoton_1515+ DSM6.2-24922 (DDNS)
Hostname(s): “UAEDXBDICNASP001.DiskStation.me”
Request time: 2020-02-05 16:05:52 UTC
Beginning June 1, 2020, we will stop allowing new domains to validate using
the ACMEv1 protocol.You should upgrade to an ACMEv2 compatible client before
then, or certificate issuance will fail. For most people, simply upgrading to
the latest version of your existing client will suffice. You can view the
client list at:
https://letsencrypt.org/docs/client-options/
If you’re unsure how your certificate is managed, get in touch with the
person who installed the certificate for you. If you don’t know who to
contact, please view the help section in our community forum at
https://community.letsencrypt.org/c/help and use the search bar to check if
there’s an existing solution for your question. If there isn’t, please create
a new topic and fill out the help template.
ACMEv1 API deprecation details can be found in our community forum:
https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1
As a reminder: In the future, Let’s Encrypt will be performing multiple
domain validation requests for each domain name when you issue a certificate.
While you’re working on migrating to ACMEv2, please check that your system
configuration will not block validation requests made by new Let’s Encrypt IP
addresses, or block multiple matching requests. Per our FAQ
(https://letsencrypt.org/docs/faq/), we don’t publish a list of IP addresses
we use to validate, and this list may change at any time.
To receive more frequent updates, subscribe to our API Announcements:
https://community.letsencrypt.org/t/about-the-api-announcements-category
Thank you for joining us on our mission to create a more secure and privacy-
respecting Web!
All the best,
Let’s Encrypt
Hi,
I am using Linux Centos 7.
Hi,
As you can see from the client UA, the one requesting the certificate is the Synology disk station with your subdomain on their domain. In this case, it's better to perform a software upgrade to your disk station (if possible) or brought this email to Synology's attention. (Since I believe acme client for that device is built into the device by Synology)
Do you receive more than one email regarding this issue (beside this email / subdomain)? If there's no notification about your domain, you may safely discard this email after you contact Synology.
Thank you
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.