My domain is: ismartroad.com
I ran this command:
certbot certonly -d zabbix.ismartroad.com -m admin@mobil-inn.com --agree-tos -n --authenticator webroot --webroot-path /var/www/
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
Cert is due for renewal, auto-renewing...
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for zabbix.ismartroad.com
Using the webroot path /var/www for all unmatched domains.
Waiting for verification...
Cleaning up challenges
Generating key (2048 bits): /etc/letsencrypt/keys/0158_key-certbot.pem
Creating CSR: /etc/letsencrypt/csr/0171_csr-certbot.pem
An unexpected error occurred:
There were too many requests of a given type :: Error creating new cert :: too many certificates already issued for exact set of domains: zabbix.ismartroad.com: see https://letsencrypt.org/docs/rate-limits/
Please see the logfiles in /var/log/letsencrypt for more details.
My web server is (include version): apache2 2.4
The operating system my web server runs on is (include version): Linux zabbix 3.16.0-6-amd64 #1 SMP Debian 3.16.57-2 (2018-07-14) x86_64 GNU/Linux
My hosting provider, if applicable, is: soyoustart
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 0.10.2
I've read some "too many certificate already issued' topics on this forum but I did not find an answer to my problem. I'm trying to renew the certificate for "zabbix.ismartroad.com" and I get the output above with the error "too many certificate already issued".
I have around 40 subdomains on ismartroad.com that check for renewal daily and that actually get renewed when they are due (for example I got one new cert this morning for "environnement-solutions.ismartroad.com"). I have not been requesting completely new certs for subdomains of ismartroad.com in the last 7 days.
As mentionned on many topics, I used crt.sh to check for certificates and I found a lot of "final certs" issued for "zabbix.ismartroad.com" so it seems that despite the error, the certificate are generated (but I did not get the .pem files). https://crt.sh/?q=%25.ismartroad.com
I also used the lectl tool which tells me : "You have issued 7 certificates in last 7 days so you could issue 43 more certificates now." It shows the valid final certs for "zabbix.ismartroad.com" too.
Can you help me please?