I canot sudo certbot renew --dry-run

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: excitech-id.com

I ran this command: sudo certbot renew --dry-run

It produced this output:

My web server is (include version): All simulated renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/mail.excitech-id.com/fullchain.pem (failure)

The operating system my web server runs on is (include version): UBUNTU

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know): i dont know

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Hi @Tormentor, and welcome to the LE community forum :slight_smile:

There is not enough detail in the failure to make a recommendation.

Please show the LE log file: /var/log/letsencrypt/letsencrypt.log
And also show the renewal config file for mail.excitech-id.com.

4 Likes

Here is a list of issued certificates crt.sh | excitech-id.com, the latest being 2023-03-23; Matching ID (i.e. SANs) mail.excitech-id.com & www.mail.excitech-id.com

However it looks like there are some DNS Errors excitech-id.com | DNSViz
Hardenize Report: excitech-id.com

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.