Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: crystobal.net
I ran this command: Inbuilt Synology GUI certificate renew and create new
It produced this output: The operation failed
My web server is (include version): Don’t know, built into DSM
The operating system my web server runs on is (include version): DSM 6.2.1-23824 Update 6 (Latest version)
My hosting provider, if applicable, is: Hosted on Synology with static IP
I can login to a root shell on my machine (yes or no, or I don’t know): Yes, if I have to
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): Synology DSM
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you’re using Certbot): Not using Certbot
I was aware of the change in validation methods with Let’s Encrypt, but as it seemed that Synology had this covered, I was not worried. It seems that I was wrong.
The certificate auto-renewed a few months ago, now it will not.
I have tried to renew, replace, and add, none work.
I have a static IP on a business connection in the UK, the DNS etc. has all been working for years OK with a Let’s Encrypt cert.
It just looks like there is now an issue because of the change in validation methods.
I can access the Synology unit via its ip address or its domain name and ports 80 & 443, though because the certificate is expired 443 does not show as secure.
I don’t really understand Linux and the command line stuff, I can do it at a push, but it takes me a long time. I nearly wiped out the whole thing once, and managed to lock my account so I am a little cautious & very careful now!
I am using the in built Synology DSM to create/renew etc. and until now, no issues.
Anybody able to shed any light please?
Going to try and raise a ticket with Synology, but, in the mean time, our emails are pretty much down because the clients don’t want to connect.