I have written a custom script with command wacs.exe --renew --baseuri “https://acme-v02.api.letsencrypt.org/” while validation is happening through the azure dns so i am getting the output like:
**
[INFO] A simple Windows ACMEv2 client (WACS)
[INFO] Software version 2.0.6.284 (RELEASE)
[INFO] IIS version 10.0
[INFO] Please report issues at https://github.com/PKISharp/win-acme
[INFO] Renewal for DNS_Point2value is due after 2020/1/1 0:55:38
**
But when i am renewing for the win acme exe then i am getting the output like [INFO] Authorize identifier: point2value.com
[INFO] Cached authorization result: valid
[INFO] Authorize identifier: point2value.com
[INFO] Cached authorization result: valid
[WARN] Unable to read from certificate cache
[WARN] Unable to read from certificate cache
[INFO] Requesting certificate DNS_Point2value
[INFO] Installing certificate in the certificate store
[INFO] Adding certificate DNS_Point2value 2019/11/7 0:55:37 to store WebHosting
[INFO] Installing with None…
[INFO] Next renewal scheduled at 2020/1/1 0:55:38
[INFO] Renewal for DNS_Point2value succeeded
So is there something i am missing in the command which i am using in the custom script?
My domain is:*.point2value.com, point2value.com
What is the problem? By all accounts, it has issued a certificate for *.point2value.com + point2value.com: crt.sh | 2077991991
If you are confused by:
The reason you don't see the wildcard there comes down to how wildcard domains are handled by Let's Encrypt. Even though you are requesting a certificate for *.point2value.com, the DNS identifier that is used to authorize that request is point2value.com.
actually that is not the problem. Actually when i am running command for renew externally i am getting response something else and no new entry i am able to see in the renew history.
So the point is: if you are using the custom script then you will be able to renew the certificate after 55 days not before that because the certificate will be expired in 90 days otherwisw you have to use --force in command.