we are domain will expire.
so i execute ./certbot-auto renew --force-renew
/root/.local/share/letsencrypt/lib/python2.6/site-packages/cryptography/init.py:26: DeprecationWarning: Python 2.6 is no longer supported by the Python core team, please upgrade your Python. A future version of cryptography will drop support for Python 2.6
DeprecationWarning
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Processing /etc/letsencrypt/renewal/appztb.cn2401.com.conf
Renewing an existing certificate
/root/.local/share/letsencrypt/lib/python2.6/site-packages/acme/jose/jwa.py:110: DeprecationWarning: signer and verifier have been deprecated. Please use sign and verify instead.
signer = key.signer(self.padding, self.hash)
Performing the following challenges:
http-01 challenge for appztb.cn2401.com
Waiting for verification…
Cleaning up challenges
Attempting to renew cert (appztb.cn2401.com) from /etc/letsencrypt/renewal/appztb.cn2401.com.conf produced an unexpected error: Failed authorization procedure. appztb.cn2401.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://appztb.cn2401.com/.well-known/acme-challenge/IefUzLQBb6x-QlxYA8X6xELNUooDWId3LCl-oKZjLuA: "
400 B". Skipping.
Processing /etc/letsencrypt/renewal/app.cn2401.com.conf
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for app.cn2401.com
Waiting for verification…
Cleaning up challenges
Attempting to renew cert (app.cn2401.com) from /etc/letsencrypt/renewal/app.cn2401.com.conf produced an unexpected error: Failed authorization procedure. app.cn2401.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://app.cn2401.com/.well-known/acme-challenge/S6zyzRkdSSQTvIMZURAsfeBFSmO2PzcI5Jw03xiA3XI: "
400 B". Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/appztb.cn2401.com/fullchain.pem (failure)
/etc/letsencrypt/live/app.cn2401.com/fullchain.pem (failure)
2 renew failure(s), 0 parse failure(s)
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: app.cn2401.com
400 The plain HTTP request was sent to HTTPS port
Type: unauthorized
Detail: Invalid response from
http://app.cn2401.com/.well-known/acme-challenge/S6zyzRkdSSQTvIMZURAsfeBFSmO2PzcI5Jw03xiA3XI:
"400 B"
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. -
The following errors were reported by the server:
Domain: appztb.cn2401.com
400 The plain HTTP request was sent to HTTPS port
Type: unauthorized
Detail: Invalid response from
http://appztb.cn2401.com/.well-known/acme-challenge/IefUzLQBb6x-QlxYA8X6xELNUooDWId3LCl-oKZjLuA:
"400 B"
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
[root@web2 letsencrypt]# mkdir -p /data/tomcat-cn2401app/tomcat/webapps/cn2401/.well-known/acme-challenge
[root@web2 letsencrypt]# mkdir -p /data/tomcat/webapps/cn2401/.well-known/acme-challenge
[root@web2 letsencrypt]# ./certbot-auto renew
/root/.local/share/letsencrypt/lib/python2.6/site-packages/cryptography/init.py:26: DeprecationWarning: Python 2.6 is no longer supported by the Python core team, please upgrade your Python. A future version of cryptography will drop support for Python 2.6
DeprecationWarning
Saving debug log to /var/log/letsencrypt/letsencrypt.log
what’s the problem? thanks.