i have an ubuntu 16.04 Server, he hosts some domains, for example www.kiss-kat,de.
I have a configuration on the server with sslh and openvpn, sharing Port 443.
All works fine, also the letsencrypt configuration and certificates.
The only thing, that does not work ist the self-validating at renewals:
forces me always to manually copy the validating-files into
If i copy the file manually, the renewal works.
In the debug-file i found that lines:
2017-03-01 14:55:47,357:INFO:letsencrypt.cli:Cert is due for renewal, auto-renewing…
2017-03-01 14:55:47,357:DEBUG:letsencrypt.cli:Requested authenticator manual and installer none
2017-03-01 14:55:47,358:DEBUG:letsencrypt.display.ops:No candidate plugin
2017-03-01 14:55:47,358:DEBUG:letsencrypt.display.ops:Single candidate plugin: * manual
Description: Manually configure an HTTP server
Interfaces: IAuthenticator, IPlugin
Entry point: manual = letsencrypt.plugins.manual:Authenticator
Initialized: <letsencrypt.plugins.manual.Authenticator object at 0x7f2b7c886dd0>
So my idea is, that there is a paramter, that Self-verify always manualy.
i discovered a line in in /etc/letsencrypt/renewal/www.kiss-kat.de.conf
authenticator = manual
Maybe, that is my problem ?
What value do i need to automaticaly Self-verify ?
Or how do i switch to Self-verify ?