this is what I saw in the terminal window: Requesting to rerun ./certbot-auto with root privileges… Saving debug log to /var/log/letsencrypt/letsencrypt.log Plugins selected: Authenticator apache, Installer apache tls-sni-01 challenge for domain.name tls-sni-01 challenge for www.domain.name t…

Right. If you read the post at the "renewal whitelist" link above, it describes how this done on the basis of domain names and not certificates. I copied the relevant section here for convenience: TLS-SNI can be used for revalidating and reissuing certificates for domain names that have previously…

@erica @bmw @pde , any thoughts?

as to renewal: I was getting a cert for a domain which was, before, part of another cert… (so, from the domain’s perspective we could say: “renewal”, getting a new one to replace the old) but it was not a renewal of an existing cert…

Tls-sni-01 challenge still in use by apache authenticator

Help

bmw January 20, 2018, 1:09am 3

I think this is a combination of the renewal whitelist and Certbot performs challenge even when reusing valid authz.

Topic		Replies	Views
Not able to stop using TLS-SNI-01 Help	13	1769	March 24, 2019
Renew: Incorrect validation certificate for tls-sni-01 challenge Help	6	9134	July 20, 2018
Life after TLS-SNI-01 domain validation Help	9	4857	February 20, 2019
Certbot TLS-SNI-01 : Not able to renew certificates Help	15	3926	August 24, 2017
Renewal failure: Failed to connect ... TLS-SNI-01 challenge Help	12	3989	September 2, 2016

Tls-sni-01 challenge still in use by apache authenticator

Related topics