I got an error which wasn't before there

basti567 · January 21, 2016, 10:02am

Let’s Encrypt SSL certificate installation failed: Failed letsencrypt execution: 2016-01-21 11:00:35,749:WARNING:letsencrypt.cli:Root (sudo) is required to run most of letsencrypt functionality.
An unexpected error occurred:
The client sent an unacceptable anti-replay nonce :: JWS has invalid anti-replay nonce
Please see the logfiles in /opt/psa/var/modules/letsencrypt/logs for more details.

serverco · January 21, 2016, 10:23am

What do the log files say ?

basti567 · January 21, 2016, 10:46am

i can’t copy the log i only can read it with SSH-Termial and it’s really long. Too long to copy.

serverco · January 21, 2016, 10:47am

What are the key points ?

alternatively copy and paste into pastebin if too long for here.

basti567 · January 21, 2016, 10:49am

it’s to long to copy it line for line from the ssh terminal

serverco · January 21, 2016, 10:50am

There is usually a way to copy from the ssh terminal - what OS and terminal are you using ?

basti567 · January 21, 2016, 10:53am

the log:
www.bastianrickmann.de/ok.log

please don’t wonder i rename the log

MJawadAzhar · January 21, 2016, 10:56am

getting same error, as above
my platform is centos 6.7 (nginx) (vestacp installed)

basti567 · January 21, 2016, 10:57am

if it helps my server:
Betriebssystem ‪Ubuntu 14.04.3 LTS‬
Plesk Version 12.5.30 Update #19, last refresh: 21. Jan. 2016 00:59:45

Osiris · January 21, 2016, 11:02am

Well, the original error is gone… Now you’ve hit the rate limit of max. 5 certificates per domain per 7 days: https://crt.sh/?Identity=%bastianrickmann.de&iCAID=7395

So… Somewhere, you’ve got the certificates successfully issued to you. I have no clue how Plesk works, but they should be somewhere…

serverco · January 21, 2016, 11:02am

From the logs

Error creating new cert :: Too many certificates already issued for: bastianrickmann.de"

basti567 · January 21, 2016, 11:03am

yes i create some but than it began to fail so i delete some and now i can’t create new one

MJawadAzhar · January 21, 2016, 11:04am

https://paste.ee/p/hTjBM here is my log please check this too

basti567 · January 21, 2016, 11:13am

is there a way to reset?

serverco · January 21, 2016, 11:28am

unfortunately not - other than wait the 7 days.

Did you delete all of those in the /etc/letsencrypt folder ? or do you still have some there ( because the ones you were issues are perfectly valid if still there 0

MJawadAzhar · January 21, 2016, 11:30am

any suggestion for me? serverco please check my log too

serverco · January 21, 2016, 11:37am

This looks related to https://github.com/letsencrypt/boulder/issues/1217 ( also discussed in this thread ) I’d suggest checking your domain name at https://crt.sh/ to check how many certs you have had issued ( to check you don’t hit the rate limits) - then test again if you are not close to the 5 certs / domain / 7 days limit