I forget my keystore password, just want to know how to reset the keystore password?
And also, the cert just expired today, can I just renew it after I reset my password or I have to get a new cert?
If you can’t get into your keystore, you may need to create a new one.
Which will be empty 
But you should be able to get a new LE cert (the same way you got the last one).
Last time it was not me, so I have no idea how to get a new LE cert, any idea how to it?
Then you will have to begin at the beginning:
Or with any luck, you can review the history commands run and any cron/systemctl jobs to piece together how it was done before.
Ok, so I just used the certbot tried to get a new cert, and i followed every steps, but got something like this: " Unable to find a virtual host listening on port 80 which is currently needed for Certbot to prove to the CA that you control your domain. Please add a virtual host for port 80." What is this mean? What should I do next? Thx
That means you instructed certbot to get a cert for a domain (and problem via a specific web server - like: apache) but certbot can't find where that domain is being served from within that web configuration file(s).
First: Understand how certbot works.
And then how to best get it to provide a cert for your specific situation.
[which may be the biggest part of the problem - you mention keystore and I hear Tomcat]
What command did you run?
What did you want it to do?
all I want just get a new LE cert so that I can bring the website back. And here is the command that I ran:
#1. input: sudo yum -y install yum-utils
output: Package yum-utils-1.1.31-46.amzn2.0.1.noarch already installed and latest version
#2. input: sudo yum-config-manager --enable rhui-REGION-rhel-server-extras rhui-REGION-rhel-server-optional
output: Loaded plugins: extras_suggestions, langpacks, priorities, update-motd
#3 input: sudo yum install certbot python2-certbot-apache
output: Loaded plugins: extras_suggestions, langpacks, priorities, update-motd
223 packages excluded due to repository priority protections
Package certbot-0.39.0-1.el7.noarch already installed and latest version
Package python2-certbot-apache-0.39.0-1.el7.noarch already installed and latest version
#4 input: sudo certbot --apache
output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
No names were found in your configuration files. Please enter in your domain
name(s) (comma and/or space separated) (Enter 'c' to cancel): 1stchoicecleaners.com
output: Obtaining a new certificate
Performing the following challenges:
http-01 challenge for 1stchoicecleaners.com
Cleaning up challenges
Error while running apachectl graceful.
Job for httpd.service failed because the control process exited with error code. See "systemctl status httpd.service" and "journalctl -xe" for details.
Unable to restart apache using ['apachectl', 'graceful']
Error while running apachectl restart.
Job for httpd.service failed because the control process exited with error code. See "systemctl status httpd.service" and "journalctl -xe" for details.
Encountered exception during recovery:
Traceback (most recent call last):
File "/usr/lib/python2.7/site-packages/certbot/error_handler.py", line 124, in _call_registered
self.funcs-1
File "/usr/lib/python2.7/site-packages/certbot/auth_handler.py", line 220, in _cleanup_challenges
self.auth.cleanup(achalls)
File "/usr/lib/python2.7/site-packages/certbot_apache/configurator.py", line 2 333, in cleanup
self.restart()
File "/usr/lib/python2.7/site-packages/certbot_apache/configurator.py", line 2 203, in restart
self._reload()
File "/usr/lib/python2.7/site-packages/certbot_apache/configurator.py", line 2 230, in _reload
raise errors.MisconfigurationError(error)
MisconfigurationError: Error while running apachectl restart.
Job for httpd.service failed because the control process exited with error code. See "systemctl status httpd.service" and "journalctl -xe" for details.
Unable to find a virtual host listening on port 80 which is currently needed for Certbot to prove to the CA that you control your domain. Please add a virtual h ost for port 80.
I have no idea what's going on, help me please.
Can you describe your web server configuration? What web server software do you use, how is it administered, and which ports does it listen on?
And we are trying our best to help you do that.
What does this output?:
apachectl -S
something like this
VirtualHost configuration:
*:443 ip-172-31-5-173.us-west-1.compute.internal (/etc/httpd/conf.d/ssl.conf:56)
ServerRoot: "/etc/httpd"
Main DocumentRoot: "/var/www/html"
Main ErrorLog: "/etc/httpd/logs/error_log"
Mutex rewrite-map: using_defaults
Mutex ssl-stapling-refresh: using_defaults
Mutex authdigest-client: using_defaults
Mutex lua-ivm-shm: using_defaults
Mutex ssl-stapling: using_defaults
Mutex proxy: using_defaults
Mutex authn-socache: using_defaults
Mutex ssl-cache: using_defaults
Mutex default: dir="/run/httpd/" mechanism=default
Mutex mpm-accept: using_defaults
Mutex cache-socache: using_defaults
Mutex authdigest-opaque: using_defaults
Mutex watchdog-callback: using_defaults
Mutex proxy-balancer-shm: using_defaults
PidFile: "/run/httpd/httpd.pid"
Define: DUMP_VHOSTS
Define: DUMP_RUN_CFG
User: name="apache" id=48 not_used
Group: name="apache" id=48 not_used
I don’t see any use of “1stchoicecleaners.com”.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.