SSL won't renew


#1

SSL have failed to renew and when I run certbot I get an error on two subdomains relating to “andreeathomson.com, www.andreeathomson.com” which is NOTHING to do with my domain. Can anyone help?


#2

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):


#3

My domain is: flightsurvey.com

I ran this command: sudo certbot --apache

It produced this output: The usual but errored on two subdomains: api.flightsurvey.com and app.flightsurvey.com citing a problem with the certificate.

My web server is (include version): Apache2

The operating system my web server runs on is (include version): Ubuntu 16

My hosting provider, if applicable, is: Me

I can login to a root shell on my machine (yes or no, or I don’t know): Yes


#4

Please show the LE log file that includes the error.


#5

Both subdomains have a cPanel-certificate with www + non-www. But both non-www versions have a Letsencrypt certificate, which is expired.

So if you use cPanel, you should only use cPanel, not Certbot.


#7

Thanks for getting back. There is cPanel for these subdomains as well as for the top level domain flightsurvey.com but it is not getting certification errors.


#8

… but, of course the SSL application for the top level fails because of the subdomains.


#9

These two domains

https://www.app.flightsurvey.com/
https://www.api.flightsurvey.com/

are working, both certificates have the www + non-www version.

You should really not mix cPanel and certbot. If you do so, this

may be the result. cPanel has it’s own management.


#10

Thanks for your continued help - they shouldn’t be because I issued a dissite on them because of the problems they were causing hence the reason why they don’t show content. Strictly speaking, they shouldn’t work at all! I’m going to have to get some help from the people who configured the server.