I set up a certificate 3 months back and thought I set up renew via cron. For some reason the renew did not work and we are now locked out due to too many attempts. I did not get the cronjob stopped. I believe I now have it stopped but we need to renew before 5 days. First, I don’t know why the renew failed. It seems to work if I try --dry-run. Second, how long do I have to wait before trying things again?
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
The cronjob looked like this:
39 1,13 * * * root /home/ec2-user/certbot-auto renew --no-self-upgrade >> /home/ec2-user/certbot.log 2>&1
So the command was:
/home/ec2-user/certbot-auto renew --no-self-upgrade
It produced this output:
Processing /etc/letsencrypt/renewal/www.agtek.com.conf
Cert is due for renewal, auto-renewing…
Non-interactive renewal: random delay of 237.607357004 seconds
/bin/sh: root: command not found
Plugins selected: Authenticator apache, Installer apache
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for www.agtek.com
Waiting for verification…
Cleaning up challenges
Attempting to renew cert (www.agtek.com) from /etc/letsencrypt/renewal/www.agtek.com.conf produced an unexpected error: [Errno 2] No such file or directory: ‘/etc/letsencrypt/archive/www.agtek.com/privkey2.pem’. Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/www.agtek.com/fullchain.pem (failure)
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/www.agtek.com/fullchain.pem (failure)
1 renew failure(s), 0 parse failure(s)
Saving debug log to /var/log/letsencrypt/letsencrypt.log
My web server is (include version):
Server version: Apache/2.4.41 (Amazon)
Server built: Oct 15 2019 22:21:35
The operating system my web server runs on is (include version):
Amazon Linux AMI release 2018.03
Kernel \r on an \m
My hosting provider, if applicable, is:
AWS
I can login to a root shell on my machine (yes or no, or I don’t know):
Yes via sudo
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
No
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
certbot 1.5.0