Renovación de certificado

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: tech-protivitiperu.com

I ran this command: certbot renew --cert-name tech-protivitiperu.com

It produced this output:

Saving debug log to C:\Certbot\log\letsencrypt.log


Processing C:\Certbot\renewal\tech-protivitiperu.com.conf


Failed to renew certificate tech-protivitiperu.com with error: The manual plugin is not working; there may be problems with your existing configuration.
The error was: PluginError('An authentication script must be provided with --manual-auth-hook when using the manual plugin non-interactively.')


All renewals failed. The following certificates could not be renewed:
C:\Certbot\live\tech-protivitiperu.com\fullchain.pem (failure)


1 renew failure(s), 0 parse failure(s)
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile C:\Certbot\log\letsencrypt.log or re-run Certbot with -v for more details.

My web server is (include version): local

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is: no

I can login to a root shell on my machine (yes or no, or I don't know): i dont't know

Hi @Will21, and welcome to the LE community forum :slight_smile:

You can't auto-renew a certificate that was issued using --manual authentication.
If you want to automate the process, you will have to use DNS-01 authentication.
You can read more about that here:
Comenzando - Let's Encrypt - Certificados SSL/TLS Gratuitos (letsencrypt.org)

If you are having trouble manually renewing it, then please show us the files:
C:\Certbot\renewal\tech-protivitiperu.com.conf
C:\Certbot\log\letsencrypt.log

4 Likes

letsencrypt.log

2022-11-28 21:15:24,475:DEBUG:certbot._internal.main:certbot version: 1.24.0
2022-11-28 21:15:24,475:DEBUG:certbot._internal.main:Location of certbot entry point: C:\Program Files (x86)\Certbot\bin\certbot.exe
2022-11-28 21:15:24,475:DEBUG:certbot._internal.main:Arguments: ['--cert-name', 'tech-protivitiperu.com', '--dry-run', '--preconfigured-renewal']
2022-11-28 21:15:24,475:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2022-11-28 21:15:24,627:DEBUG:certbot._internal.log:Root logging level set at 30
2022-11-28 21:15:24,646:DEBUG:certbot._internal.display.obj:Notifying user: Processing C:\Certbot\renewal\tech-protivitiperu.com.conf
2022-11-28 21:15:24,727:DEBUG:certbot._internal.plugins.selection:Requested authenticator <certbot._internal.cli.cli_utils._Default object at 0x046474F0> and installer <certbot._internal.cli.cli_utils._Default object at 0x046474F0>
2022-11-28 21:15:24,728:DEBUG:certbot._internal.cli:Var dry_run=True (set by user).
2022-11-28 21:15:24,728:DEBUG:certbot._internal.cli:Var server={'dry_run', 'staging'} (set by user).
2022-11-28 21:15:24,728:DEBUG:certbot._internal.cli:Var dry_run=True (set by user).
2022-11-28 21:15:24,728:DEBUG:certbot._internal.cli:Var server={'dry_run', 'staging'} (set by user).
2022-11-28 21:15:24,728:DEBUG:certbot._internal.cli:Var account={'server'} (set by user).
2022-11-28 21:15:24,747:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80
2022-11-28 21:15:25,179:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503
2022-11-28 21:15:25,183:DEBUG:certbot.ocsp:OCSP response for certificate C:\Certbot\archive\tech-protivitiperu.com\cert1.pem is signed by the certificate's issuer.
2022-11-28 21:15:25,185:DEBUG:certbot.ocsp:OCSP certificate status for C:\Certbot\archive\tech-protivitiperu.com\cert1.pem is: OCSPCertStatus.GOOD
2022-11-28 21:15:25,195:DEBUG:certbot._internal.storage:Should renew, less than 30 days before certificate expiry 2022-12-05 18:33:16 UTC.
2022-11-28 21:15:25,195:INFO:certbot._internal.renewal:Certificate is due for renewal, auto-renewing...
2022-11-28 21:15:25,195:DEBUG:certbot._internal.plugins.selection:Requested authenticator manual and installer None
2022-11-28 21:15:25,202:DEBUG:certbot._internal.plugins.disco:Other error:(PluginEntryPoint#manual): An authentication script must be provided with --manual-auth-hook when using the manual plugin non-interactively.
Traceback (most recent call last):
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\_internal\plugins\disco.py", line 160, in prepare
    self._initialized.prepare()
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\_internal\plugins\manual.py", line 115, in prepare
    raise errors.PluginError(
certbot.errors.PluginError: An authentication script must be provided with --manual-auth-hook when using the manual plugin non-interactively.
2022-11-28 21:15:25,204:DEBUG:certbot._internal.plugins.selection:No candidate plugin
2022-11-28 21:15:25,204:DEBUG:certbot._internal.plugins.selection:Selected authenticator None and installer None
2022-11-28 21:15:25,204:ERROR:certbot._internal.renewal:Failed to renew certificate tech-protivitiperu.com with error: The manual plugin is not working; there may be problems with your existing configuration.
The error was: PluginError('An authentication script must be provided with --manual-auth-hook when using the manual plugin non-interactively.')
2022-11-28 21:15:25,205:DEBUG:certbot._internal.renewal:Traceback was:
Traceback (most recent call last):
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\_internal\renewal.py", line 485, in handle_renewal_request
    main.renew_cert(lineage_config, plugins, renewal_candidate)
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\_internal\main.py", line 1485, in renew_cert
    installer, auth = plug_sel.choose_configurator_plugins(config, plugins, "certonly")
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\_internal\plugins\selection.py", line 258, in choose_configurator_plugins
    diagnose_configurator_problem("authenticator", req_auth, plugins)
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\_internal\plugins\selection.py", line 364, in diagnose_configurator_problem
    raise errors.PluginSelectionError(msg)
certbot.errors.PluginSelectionError: The manual plugin is not working; there may be problems with your existing configuration.
The error was: PluginError('An authentication script must be provided with --manual-auth-hook when using the manual plugin non-interactively.')

2022-11-28 21:15:25,205:DEBUG:certbot._internal.display.obj:Notifying user: 
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2022-11-28 21:15:25,206:ERROR:certbot._internal.renewal:All simulated renewals failed. The following certificates could not be renewed:
2022-11-28 21:15:25,206:ERROR:certbot._internal.renewal:  C:\Certbot\live\tech-protivitiperu.com\fullchain.pem (failure)
2022-11-28 21:15:25,206:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2022-11-28 21:15:25,207:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
  File "runpy.py", line 197, in _run_module_as_main
  File "runpy.py", line 87, in _run_code
  File "C:\Program Files (x86)\Certbot\bin\certbot.exe\__main__.py", line 29, in <module>
    sys.exit(main())
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\main.py", line 19, in main
    return internal_main.main(cli_args)
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\_internal\main.py", line 1679, in main
    return config.func(config, plugins)
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\_internal\main.py", line 1565, in renew
    renewal.handle_renewal_request(config)
  File "C:\Program Files (x86)\Certbot\pkgs\certbot\_internal\renewal.py", line 511, in handle_renewal_request
    raise errors.Error("{0} renew failure(s), {1} parse failure(s)".format(
certbot.errors.Error: 1 renew failure(s), 0 parse failure(s)
2022-11-28 21:15:25,208:ERROR:certbot._internal.log:1 renew failure(s), 0 parse failure(s)

tech-protivitiperu.com.conf

# renew_before_expiry = 30 days
version = 1.24.0
archive_dir = C:\Certbot\archive\tech-protivitiperu.com
cert = C:\Certbot\live\tech-protivitiperu.com\cert.pem
privkey = C:\Certbot\live\tech-protivitiperu.com\privkey.pem
chain = C:\Certbot\live\tech-protivitiperu.com\chain.pem
fullchain = C:\Certbot\live\tech-protivitiperu.com\fullchain.pem

# Options used in the renewal process
[renewalparams]
account = 0b7887d3890d62661e93582b610568f7
pref_challs = dns-01,
server = https://acme-v02.api.letsencrypt.org/directory
authenticator = manual

Try these two commands interactively [certbot should prompt you through the entire renewal process]:

certbot certonly --manual --preferred-challenges=dns --cert-name tech-protivitiperu.com
certbot run -a manual -i null --cert-name tech-protivitiperu.com

[one of the two should work for you]

6 Likes

gracias, lo que me has indicado ha funcionado

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.