Dear Support Team,
i just recently take over one data center where i found one web server using lets encrypt ssl certificate which will be expire after a month. now want to renew but don't have any idea how to renew.
My domain is: alwatan.com.sa
Distributor ID: Ubuntu
Description: Ubuntu 20.04.1 LTS
Release: 20.04
Codename: focal
SSLCertificateFile /etc/letsencrypt/live/live.alwatan.com.sa/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/live.alwatan.com.sa/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf
above mention files are located in our server. and it will be expire on 29 may. i don't if it will be renew automatic or we have to do it manual . previous It person done this before i am new to this so i don't know.
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator apache, Installer apache
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for live.alwatan.com.sa
Waiting for verification...
Challenge failed for domain live.alwatan.com.sa
http-01 challenge for live.alwatan.com.sa
Cleaning up challenges
Attempting to renew cert (live.alwatan.com.sa) from /etc/letsencrypt/renewal/live.alwatan.com.sa.conf produced an unexpected error: Some challenges have failed.. Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/live.alwatan.com.sa/fullchain.pem (failure)
** DRY RUN: simulating 'certbot renew' close to cert expiry
** (The test certificates below have not been saved.)
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/live.alwatan.com.sa/fullchain.pem (failure)
** DRY RUN: simulating 'certbot renew' close to cert expiry
** (The test certificates above have not been saved.)
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you're using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
yes people from outside they access ... from outside. but ssl certificate is install and configure on other server ... and between ssl certificate installed server & public ip address there is firewall ... which specific ports allowed from outside and inside no issues