Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: data-web.net

I ran this command: This is a cron job automatically set up I think by Webmin:
test -x /usr/bin/certbot -a ! -d /run/systemd/system && perl -e ‘sleep int(rand(3600))’ && certbot -q renew

It produced this output: from /var/log/letsencrypt:
2017-12-08 05:50:49,998:DEBUG:certbot.main:certbot version: 0.19.0
2017-12-08 05:50:49,999:DEBUG:certbot.main:Arguments: [’-q’]
2017-12-08 05:50:49,999:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2017-12-08 05:50:50,181:DEBUG:certbot.log:Root logging level set at 30
2017-12-08 05:50:50,182:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2017-12-08 05:50:50,321:DEBUG:certbot.plugins.selection:Requested authenticator <certbot.cli._Default object at 0x7f06be5cf410> and installer <certbot.cli._Default object at 0x7f06be5cf410>
2017-12-08 05:50:50,321:DEBUG:certbot.cli:Default Detector is Namespace(account=<certbot.cli._Default object at 0x7f06be621e90>, agree_dev_preview=None, allow_subset_of_names=<certbot.cli._Default object at 0x7f06be621310>, apache=<certbot.cli._Default object at 0x7f06be5cf710>, apache_challenge_location=<certbot.cli._Default object at 0x7f06be5cb790>, apache_ctl=<certbot.cli._Default object at 0x7f06be5c4fd0>, apache_dismod=<certbot.cli._Default object at 0x7f06be5cf290>, apache_enmod=<certbot.cli._Default object at 0x7f06be5cf490>, apache_handle_modules=<certbot.cli._Default object at 0x7f06be5cb490>, apache_handle_sites=<certbot.cli._Default object at 0x7f06be5cb190>, apache_init_script=<certbot.cli._Default object at 0x7f06be5c4c90>, apache_le_vhost_ext=<certbot.cli._Default object at 0x7f06be5cf0d0>, apache_logs_root=<certbot.cli._Default object at 0x7f06be5cb950>, apache_server_root=<certbot.cli._Default object at 0x7f06be5cbd50>, apache_vhost_root=<certbot.cli._Default object at 0x7f06be5cbb50>, authenticator=<certbot.cli._Default object at 0x7f06be5cf410>, break_my_certs=<certbot.cli._Default object at 0x7f06be5c0cd0>, cert_path=<certbot.cli._Default object at 0x7f06be5cbbd0>, certname=<certbot.cli._Default object at 0x7f06be612b90>, chain_path=<certbot.cli._Default object at 0x7f06be5cbed0>, checkpoints=<certbot.cli._Default object at 0x7f06be5cb6d0>, config_dir=<certbot.cli._Default object at 0x7f06be5cbfd0>, config_file=None, configurator=<certbot.cli._Default object at 0x7f06be5cf410>, csr=<certbot.cli._Default object at 0x7f06be5cb4d0>, debug=<certbot.cli._Default object at 0x7f06be5c05d0>, debug_challenges=<certbot.cli._Default object at 0x7f06be5c06d0>, deploy_hook=<certbot.cli._Default object at 0x7f06be5c4d10>, dialog=None, directory_hooks=<certbot.cli._Default object at 0x7f06be5c4f10>, dns_cloudflare=<certbot.cli._Default object at 0x7f06be5cfc10>, dns_cloudxns=<certbot.cli._Default object at 0x7f06be5cfd10>, dns_digitalocean=<certbot.cli._Default object at 0x7f06be5cfe10>, dns_dnsimple=<certbot.cli._Default object at 0x7f06be5cff10>, dns_dnsmadeeasy=<certbot.cli._Default object at 0x7f06be5d4050>, dns_google=<certbot.cli._Default object at 0x7f06be5cffd0>, dns_luadns=<certbot.cli._Default object at 0x7f06be5cfdd0>, dns_nsone=<certbot.cli._Default object at 0x7f06be5cfbd0>, dns_rfc2136=<certbot.cli._Default object at 0x7f06be5cf9d0>, dns_route53=<certbot.cli._Default object at 0x7f06be5cf7d0>, domains=<certbot.cli._Default object at 0x7f06be612950>, dry_run=<certbot.cli._Default object at 0x7f06be612dd0>, duplicate=<certbot.cli._Default object at 0x7f06be621f90>, eff_email=<certbot.cli._Default object at 0x7f06be619710>, email=<certbot.cli._Default object at 0x7f06be6194d0>, expand=<certbot.cli._Default object at 0x7f06be619dd0>, force_interactive=<certbot.cli._Default object at 0x7f06be612710>, fullchain_path=<certbot.cli._Default object at 0x7f06be5cbdd0>, func=<function renew at 0x7f06c4f32230>, hsts=<certbot.cli._Default object at 0x7f06be5c4210>, http01_address=<certbot.cli._Default object at 0x7f06be5c0bd0>, http01_port=<certbot.cli._Default object at 0x7f06be5c0ad0>, ifaces=<certbot.cli._Default object at 0x7f06be5cb9d0>, init=<certbot.cli._Default object at 0x7f06be5cb7d0>, installer=<certbot.cli._Default object at 0x7f06be5cf410>, key_path=<certbot.cli._Default object at 0x7f06be5cbcd0>, logs_dir=<certbot.cli._Default object at 0x7f06be5cf210>, manual=<certbot.cli._Default object at 0x7f06be5cfa10>, manual_auth_hook=<certbot.cli._Default object at 0x7f06be5cf5d0>, manual_cleanup_hook=<certbot.cli._Default object at 0x7f06be5c48d0>, manual_public_ip_logging_ok=<certbot.cli._Default object at 0x7f06be5c46d0>, max_log_backups=<certbot.cli._Default object at 0x7f06be612190>, must_staple=<certbot.cli._Default object at 0x7f06be5c0ed0>, nginx=<certbot.cli._Default object at 0x7f06be5cf810>, no_bootstrap=<certbot.cli._Default object at 0x7f06be5c02d0>, no_self_upgrade=<certbot.cli._Default object at 0x7f06be5c01d0>, no_verify_ssl=<certbot.cli._Default object at 0x7f06be5c07d0>, noninteractive_mode=<certbot.cli._Default object at 0x7f06be6124d0>, num=<certbot.cli._Default object at 0x7f06be5cb1d0>, os_packages_only=<certbot.cli._Default object at 0x7f06be5c00d0>, post_hook=<certbot.cli._Default object at 0x7f06be5c4b10>, pre_hook=<certbot.cli._Default object at 0x7f06be5c4a10>, pref_challs=<certbot.cli._Default object at 0x7f06be5c4910>, prepare=<certbot.cli._Default object at 0x7f06be5cb8d0>, quiet=True, reason=<certbot.cli._Default object at 0x7f06be5cb5d0>, redirect=<certbot.cli._Default object at 0x7f06be5c0fd0>, register_unsafely_without_email=<certbot.cli._Default object at 0x7f06be619050>, reinstall=<certbot.cli._Default object at 0x7f06be619b90>, renew_by_default=<certbot.cli._Default object at 0x7f06be621c10>, renew_hook=<certbot.cli._Default object at 0x7f06be5c4c10>, renew_with_new_domains=<certbot.cli._Default object at 0x7f06be6210d0>, rsa_key_size=<certbot.cli._Default object at 0x7f06be5c0dd0>, server=<certbot.cli._Default object at 0x7f06be5cf310>, staging=<certbot.cli._Default object at 0x7f06be5c04d0>, standalone=<certbot.cli._Default object at 0x7f06be5cf910>, standalone_supported_challenges=<certbot.cli._Default object at 0x7f06be5c4390>, staple=<certbot.cli._Default object at 0x7f06be5c4610>, strict_permissions=<certbot.cli._Default object at 0x7f06be5c4810>, text_mode=<certbot.cli._Default object at 0x7f06be60fe10>, tls_sni_01_address=<certbot.cli._Default object at 0x7f06be5c09d0>, tls_sni_01_port=<certbot.cli._Default object at 0x7f06be5c08d0>, tos=<certbot.cli._Default object at 0x7f06be621d90>, uir=<certbot.cli._Default object at 0x7f06be5c4410>, update_registration=<certbot.cli._Default object at 0x7f06be619290>, user_agent=<certbot.cli._Default object at 0x7f06be5cb2d0>, user_agent_comment=<certbot.cli._Default object at 0x7f06be5cb3d0>, validate_hooks=<certbot.cli._Default object at 0x7f06be5c4e10>, verb=‘renew’, verbose_count=<certbot.cli._Default object at 0x7f06be60fbd0>, webroot=<certbot.cli._Default object at 0x7f06be5cfb10>, webroot_map=<certbot.cli._Default object at 0x7f06be5c0f50>, webroot_path=<certbot.cli._Default object at 0x7f06be5c4a90>, work_dir=<certbot.cli._Default object at 0x7f06be5cf110>)
2017-12-08 05:50:50,357:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-08 05:50:50,403:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-08 05:50:50,427:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-08 05:50:50,467:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-08 05:50:50,488:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-08 05:50:50,511:INFO:certbot.renewal:Cert not yet due for renewal
2017-12-08 05:50:50,511:DEBUG:certbot.renewal:no renewal failures

My web server is (include version): Apache version 2.4.18

The operating system my web server runs on is (include version):
Ubuntu 16.04.3 LTS (GNU/Linux 4.10.0-40-generic x86_64)

My hosting provider, if applicable, is: Amazon

I can login to a root shell on my machine (yes or no, or I don’t know): Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): Webmin 1.850

A couple of things - In the /etc/letsencrypt/renewal folder some strange things. There are now multiple .conf files:
data-web.net,conf
data-web.net-0001.conf
data-web.net-0002.conf
data-web.net-0003.conf

There are also corresponding folders in /etc/letsencrypt/live and /etc/letsencrypt/archive

The -000x.confs differ from the original in that # Options used in the renewal process
[renewalparams]
account = 14679280ff3cb2cdfaed29dff74125ff
manual_public_ip_logging_ok = True
authenticator = webroot
rsa_key_size = 2048
installer = None
webroot_path = /var/www,
[[webroot_map]]
data-web.net = /var/www

while the original was as follows:

Options used in the renewal process

[renewalparams]
authenticator = apache
installer = apache
account = 14679280ff3cb2cdfaed29dff74125ff

Chrome and Brave browsers both complain that the cert expired 17 days ago.
Date and time are correct on server.
One other thing - accessing my Webmin requires me to specify a port. I’ve noticed that I can connect to data-web.net securely BUT NOT to data-web.net:xxxxx
I appreciate any support you can give!

https://data-web.net has a valid and unexpired certificate installed from my perspective - did you manually fix it or is the issue on a different endpoint?

My apologies. I found that the SSL configuration in Webmin was pointing to an erroneous folder. Once I corrected the paths to the keys, I renewed the cert from within Webmin and the problem disappeared.

Still wondering about the multiple .conf files, my other domains don’t have them.

Thanks!

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.