Renewing cert with Certsage fails with "password was incorrect"

rosede · October 13, 2024, 5:15pm

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:
usmcmta.org

I ran this command:
https://usmcmta.org/certsage.php

It produced this output:
password was incorrect

My web server is (include version):
Nginx

The operating system my web server runs on is (include version):
Linux

My hosting provider, if applicable, is:
Godaddy.com

I can login to a root shell on my machine (yes or no, or I don't know):
No

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
Yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
Certsage

I used Certsage for the first time earlier this summer. It was suggested to me from this post:
Renewal fails trying to verify domain

I now need to renew the cert and I get "password was incorrect". The password is correct. I'm not sure how to get beyond this error.

Thanks

griffin · October 13, 2024, 5:39pm

Hi

Did you copy the contents of password.txt located in your CertSage directory then paste them in the password box before pressing the button?

Note that you can replace the contents of password.txt with whatever you want to use instead of using the randomly-generated password initially provided by CertSage.

rosede · October 15, 2024, 10:57am

Yes, to both questions. Yes, I copied the contents from the password.txt file and paste into the password box and yes, I created my own password. I even had Certsage generate a new password.

No matter what I do, I get "password was incorrect".

Thanks

Osiris · October 15, 2024, 12:09pm

Is that even possible?

griffin · October 15, 2024, 12:15pm

Yeah. Deleting password.txt and loading certsage.php will cause CertSage to generate a new password.txt containing a new, random password.

griffin · October 15, 2024, 12:24pm

I'm at a bit of a loss here. The code that generates that error is so simple that there's practically only one way that error can happen, which is that the wrong password is submitted. Are you positive that you're entering the correct password in the correct password box (there are 3 password boxes on the page)? One trick I can recommend is to temporarily save password.txt with no contents then enter no password when using CertSage. If that works when you previously got an error, it indicates that either you were using the wrong password box or there's some kind of breakdown in communication with your webserver (i.e. something in your website configuration is interfering with posting your password to your webserver).

rg305 · October 15, 2024, 12:26pm

cAsE seNsiTivE ?

griffin · October 15, 2024, 12:28pm

Absolutely case sensitive.

rosede · October 15, 2024, 5:50pm

Interesting. Previously I was just typing "cat password.txt" and coping the password. This time I actually vi'd the file and copied. This time it worked. Not sure why doing the cat on the file caused issues. It shouldn't, but it did.

I now have a new cert

Thanks

griffin · October 16, 2024, 1:17am

You may have been picking up hidden formatting characters or some kind of conversion from cat. Hard to say.

I recommend pasting both in a comparator and seeing the difference.

system · November 15, 2024, 1:18am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.