My domain is:
fileshare.eastndc.eu
eastndc.eu
I ran this command:
sudo /usr/bin/certbot renew --pre-hook "service haproxy stop" --post-hook "service haproxy start" --renew-hook "/root/haproxy_letsencrypt/concat_certificate.sh"
et :
sudo /usr/bin/certbot renew --dry-run --pre-hook "service haproxy stop" --post-hook "service haproxy start" --renew-hook "/root/haproxy_letsencrypt/concat_certificate.sh"
It produced this output:
Without --dry-run, certbot renew indicates that the certificate is up to date :
/etc/letsencrypt/live/fileshare.acroe-ica.org/fullchain.pem expires on 2021-09-04
And it is correctly dated in /etc/letsencrypt/live But the HTTPS connection to the websites do not work.
With the --dry-run option (but not sure this is the issue !!), I obtain :
Renewing an existing certificate
Attempting to renew cert (fileshare.acroe-ica.org) from /etc/letsencrypt/renewal/fileshare.acroe-ica.org.conf produced an unexpected error: urn:ietf:params:acme:error:malformed :: The request message was malformed :: Method not allowed. Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/fileshare.acroe-ica.org/fullchain.pem (failure)
My web server is (include version):
HA-Proxy version 1.6.3 2015/12/25
The operating system my web server runs on is (include version):**
Ubuntu 16.04.6 LTS
My hosting provider, if applicable, is: myself, on various machines behind HAProxy (which acts as a proxy)
I can login to a root shell on my machine (yes or no, or I don't know)
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel) :
no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
certbot 0.31.0
====
few details :
My certificate has been correctly renewed, but now the HTTPS access to my websites is not possible https://fileshare.acroe-ica.org/
The certificate was renewed on June, +, 2021, successfully as far as I checked.
It is up to date : cerbot renew indicates :
/etc/letsencrypt/live/fileshare.acroe-ica.org/fullchain.pem expires on 2021-09-04 (skipped)
The certificate is in /etc/letsencrypt/live with the appropriate date, June 6th.
Still, the certificate does not function, for example on :
https://fileshare.acroe-ica.org/
I already had this problem before, but the solution (removing /etc/haproxy/certs/fileshare.acroe-ica.org.pem
and renewing again) is not working this time.
I tried also rebooting, restarting haproxy, and other things, without success.
I am not at all a specialist... so, any help very much appreciated, thanks !!
Thanks in advance,
Nicolas