Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
radio.exploradio.fr
I ran this command:
sudo certbot renew --dry-run
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/radio.exploradio.fr.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Simulating renewal of an existing certificate for radio.exploradio.fr
Failed to renew certificate radio.exploradio.fr with error: Couldn't create root for renew_hook http-01 challenge responses: [Errno 2] No such file or directory: 'cat /etc'
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
All simulated renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/radio.exploradio.fr/fullchain.pem (failure)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1 renew failure(s), 0 parse failure(s)
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
My web server is (include version): Icecast 2.4.4
The operating system my web server runs on is (include version): Ubuntu 24.04.1 LTS
My hosting provider, if applicable, is: [Ovh] (Cloud Computing & HĂ©bergement Web | OVHcloud France)
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 2.9.0
If needed, the Renewal file: /etc/letsencrypt/renewal/radio.exploradio.fr.conf
# renew_before_expiry = 30 days
version = 2.9.0
archive_dir = /etc/letsencrypt/archive/radio.exploradio.fr
cert = /etc/letsencrypt/live/radio.exploradio.fr/cert.pem
privkey = /etc/letsencrypt/live/radio.exploradio.fr/privkey.pem
chain = /etc/letsencrypt/live/radio.exploradio.fr/chain.pem
fullchain = /etc/letsencrypt/live/radio.exploradio.fr/fullchain.pem
# Options used in the renewal process
[renewalparams]
account = 1a616e669395a5ebf1ef359c72e1c2b8
authenticator = webroot
server = https://acme-v02.api.letsencrypt.org/directory
key_type = ecdsa
webroot_path = /usr/share/icecast2/web,
[[webroot_map]]
renew_hook = cat /etc/letsencrypt/live/radio.exploradio.fr/fullchain.pem /etc/letsencrypt/live/radio.exploradio.fr/privkey.pem | sudo tee /etc/icecast2/bundle.pem && service icecast2 restart
I am the one who added to this file the last line :
renew_hook = cat /etc/letsencrypt/live/radio.exploradio.fr/fullchain.pem /etc/letsencrypt/live/radio.exploradio.fr/privkey.pem | sudo tee /etc/icecast2/bundle.pem && service icecast2 restart
I was following this guide to get succesfully an SSL certificate, but the renewal process validation failed: Icecast HTTPS/SSL with Let's Encrypt: Setup Guide - Media Realm
I can also provide if needed the certbot debug log file content. Please just tell me if it safe to share it or if I should not copy/paste some parts of it.
Thank you so much for your help.