We manage thousands of VM’s with certbot to install/renew Let’s encrypt certificates. On all servers we have the “certbot renew” command started by crond at one and the same time. Each VM has its own IPv4 IP address.
Renewal fails for different VM’s randomly with the following: domain.com.conf produced an unexpected error: urn:ietf:params:acme:error:rateLimited :: There were too many requests of a given type :: Error creating new order :: too many new orders recently: see https://letsencrypt.org/docs/rate-limits/. Skipping.
If I run “certbot renew --cert-name domain.com --dry-run” it completes correctly.
Which limit exactly are we hitting here as those are renewal requests? Can you suggest a workaround/fix of this issue?