Problem updating ACME TLS-SNI-01 to alternative validation method

Help
182

Unable to clean up challenge directory /var/www/kreator.ch/.well-known/acme-challenge

183

That probably just means the folder isnā€™t empty - not a real concern

Did it say ā€œCongratulations!..ā€ ?

184

Unfortunately: non.
Seems to be a mix between certbot & certbot-auto.
Maybe I should uninstall the latter.
In the past I did not have these .Well-known/acme ā€¦ (seems to me)

185

The answer was:
Domain: kreator.ch
Type: connection
Detail: Fetching
http://kreator.ch/.well-known/acme-challenge/m6rgLXlLQxR_iC8Nfa-vTJptEwKKd_X-bhW3u2wJgS4:
Connection refused

To fix these errors, please make sure that your domain name was
entered correctly and the DNS A record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If youā€™re using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
Rem: I do not have fire-wall

186

certbot-auto is a ā€œself-containedā€ system.
It should not be causing a grief.

187

Well that is the same http problem we have been trying to overcome.

You need to do the opposite here then.
And force https authentication:
./certbot [whatever you had +] --preferred_challenges https

188

Do you have TeanViewer ?
I could give you access to my server this way. It would go faster ā€¦

189

My ā€œTVā€ PC(laptop) is down at the momentā€¦
The fan wonā€™t spin so it refuses to boot [better safe than sorry I suppose].

So, no I canā€™t - sorry.

190

Lol.

root@vserv2200.swisslink.ch:/root# certbot renew --preferred-challenges https
An unexpected error occurred:
ArgumentTypeError: Unrecognized challenges: https
Please see the logfile 'certbot.log' for more details.

191

OMG!!!

cerbot --version

192

BRAIN FAAART!

Itā€™s NOT HTTPS
use
TLS-SNI-01

certbot renew --preferred-challenges tls-sni-01

193

Certbot seems to be dead !!!
cerbot --version
-su: cerbot: command not found

194

cerTbot --version
[all lowercase]

195

It was all lowercase

196

c e r b o t
c e r t b o t

yours was missing the middle T

197

Sorry
certbot 0.10.2

198

but try this :slight_smile:
certbot renew --preferred-challenges tls-sni-01

199

No renewals were attempted.

200

Itsā€™ very lateā€¦
Itsā€™ very earlyā€¦

Itsā€™ both.

201

Ok a step in the right direction.
certbot certificates
is empty, so it can't RENEW anything.
So you need to get new with "certonly" and without "renew"
And if it doesn't prompt you for domain(s), we'll have to add them with "-d"
[and possibly "--apache" also - or "--webroot"]