Issues updating certificates on FreePBX

Hi all, I have been trying to update the certificate on my FreePBX server and am having a lot of problems. I learned that it was probably because I needed to open port 80 on my firewall to allow updates, but I went into my settings and allowed incoming traffic from port 80 and was still timing out on request. Now I can no longer troubleshoot this issue because I have gotten the error below statting that I cannot request anymore certs for this domain. I understand I can only get 5 per week, but I never actually got to use these 5 I requested. What can I do? I need to get this cert updated.

My domain is: tacticallc.com

I ran this command: I am in GUI trying to renew the cert

It produced this output: I was getting that my request was timing out, but am now getting “There was an error updating the certificate: 429 { “type”: “urn:ietf:params:acme:error:rateLimited”, “detail”: “Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/”, “status”: 429 }”

My web server is (include version): freePBX 15.0.16.52

The operating system my web server runs on is (include version): Linux (I am unsure of the version)

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know): Having problems getting in

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

2 Likes

Hi @KFSIT

your real error is required. That’s only a small problem -> read the link.

2 Likes

I am no longer getting the other error message, so I cannot recall fully what it was. The biggest problem now is that I cannot attempt to get more certifications it seems.

I read the part about clearing pending authorizations, but I do not see the log reports in FreePBX. I just took this over from our previous Admin, and I am trying to wrap my head around it.

1 Like

Please read the document. You don’t have a “pending authorizations problem”.

2 Likes

I am sorry, I misread the document. I thought pending authorizations was an issue within the same problem. So if that is not the case, the only thing I can do is wait until Monday to try again, and if I cannot fix the other problem and it happens again, wait another week?

1 Like

You have a “too many failed authorizations” info.

There is a Failed Validation limit of 5 failures per account, per hostname, per hour.

One hour, nothing else.

2 Likes

Wow I am bad at reading this documentation. Sorry, I promise I am not usually this dense haha. Was just getting frustrated and in a hurry. I am going to use the hour to break off it for a bit to get a fresh look, and will update when the other error comes back.

1 Like

Hi,

*edit: added to lsit of things I have done

I now have the other error. I am getting “There was an error updating the certificate: Verification timed out” and I see that this is repeated a few times before it times out " signed request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/4890977181/sWwliQ Verification pending, sleeping 1s".

I have created a port forwarding rule on my firewall that points all incoming port 80 traffic to my FreePBX server. port 80 is opened on the server itself, and in system admin, I have let encrypt set to port 80, and I have a custom service opening port 80

1 Like

Update. After giving it some time, it just started working. No idea why it did not at first, but it is all good now.
Thank you!

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.