I got mail certificates will expire, I try to fix problem. Received 1 certificate(s), first certificate had names "dummy

Hello!

I got mail certificates will expire,

I run /root/certbot-auto renew and got this message

IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: template.kassakaappi.net
    Type: unauthorized
    Detail: Incorrect validation certificate for tls-sni-01 challenge.
    Requested
    b7e6b8d9c0277fce72a8c3b84581f201.37da990a836d654af7c42bb7cf74927b.acme.invalid
    from 178.63.3.78:443. Received 1 certificate(s), first certificate
    had names “dummy,
    e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”

    Domain: static.kassakaappi.net
    Type: unauthorized
    Detail: Incorrect validation certificate for tls-sni-01 challenge.
    Requested
    ab0e191e7bade73b45252cfa83915630.ac91cc1fb4228cb2271596f1dac208f1.acme.invalid
    from 178.63.3.78:443. Received 1 certificate(s), first certificate
    had names "dummy,

    Domain: www.kassakaappi.net
    Type: unauthorized
    Detail: Incorrect validation certificate for tls-sni-01 challenge.
    Requested
    7a4b2900b8685757e00dfefccf68c08a.c0bb47b671037e5a65bb2357ffd58013.acme.invalid
    from 178.63.3.78:443. Received 1 certificate(s), first certificate
    had names “dummy,
    e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”

Domain: vanha.kassakaappi.net
Type: unauthorized
Detail: Incorrect validation certificate for tls-sni-01 challenge.
Requested
f9864816cbfa3c1beb7da93d66f7a43e.65490c2e985e892a0e72a35300784ab0.acme.invalid
from 178.63.3.78:443. Received 1 certificate(s), first certificate
had names “dummy,
e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”

Domain: kassakaappi.net
Type: unauthorized
Detail: Incorrect validation certificate for tls-sni-01 challenge.
Requested
bc1baad292edd083b67252fb95b90daa.60a480f1d7c461a3c0000393d3cc2185.acme.invalid
from 178.63.3.78:443. Received 1 certificate(s), first certificate
had names “dummy,
e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”

Domain: hiekkalaatikko.kassakaappi.net
Type: unauthorized
Detail: Incorrect validation certificate for tls-sni-01 challenge.
Requested
1f29e1e5c7a1085471cb7e950e085c04.e569ef25f2cf62adb7d67750428e54c1.acme.invalid
from 178.63.3.78:443. Received 1 certificate(s), first certificate
had names “dummy,
e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”

To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.

I run /root/certbot-auto renew
and got this error. Where is the problem?

Attempting to renew cert from /etc/letsencrypt/renewal/www.kassakaappi.net.conf produced an unexpected error: Failed authorization procedure. hiekkalaatikko.kassakaappi.net (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested cf7085d17b138cb4b4972b25344622df.a3db745b0ede3e06ecab49789ebe56c3.acme.invalid from 178.63.3.78:443. Received 1 certificate(s), first certificate had names “dummy, e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”, static.kassakaappi.net (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested 257d91f41123d2444308e3bd19d8aa3c.1ea08c67cfc3684a1c7e097a22dd7b66.acme.invalid from 178.63.3.78:443. Received 1 certificate(s), first certificate had names “dummy, e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”, kassakaappi.net (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested 1e73b3c647c1b61fce161c984978fdeb.b8c18824d3fbd64548c275c1efd7229e.acme.invalid from 178.63.3.78:443. Received 1 certificate(s), first certificate had names “dummy, e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”, vanha.kassakaappi.net (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested d8e019e65451393596e830c1b7b01823.fb0cde3b6af0c9fc6ea8915d1da70b42.acme.invalid from 178.63.3.78:443. Received 1 certificate(s), first certificate had names “dummy, e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”, www.kassakaappi.net (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested 0fa3b3120edd8632f69a881e41f2fa4e.3ee971d2ae26f42c80b56ebe04a2dd05.acme.invalid from 178.63.3.78:443. Received 1 certificate(s), first certificate had names “dummy, e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”, template.kassakaappi.net (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested df8f83958147d0a6cc89ac17fbad546f.b6c9725155cb9c6d69221be09bc13868.acme.invalid from 178.63.3.78:443. Received 1 certificate(s), first certificate had names “dummy, e238032ae4e9ce14d8ffdad3157843d1.b863de3f08166ae82f3d56a218f488e0.acme.invalid”. Skipping

I solve this.

Run command /root/certbot-auto --force-renewal
pick the sites which had problem and make/update new certificates

hiekkalaatikko.kassakaappi-le-ssl.conf
kassakaappi-le-ssl.conf
static.kassakaappi-le-ssl.conf
template.kassakaappi-le-ssl.conf

All these files tehse SSLCertificateFileand SSLCertificateKeyFile
points out same directory www.kassakaappi.net.

SSLCertificateFile /etc/letsencrypt/live/www.kassakaappi.net/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/www.kassakaappi.net/privkey.pem

After new certficates I run certbot delete
and delete this www.kassakaappi.net

Now every certificates are ok.
Cert not yet due for renewal

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.