Hello... Looking forward to some help.
No matter what I do, I cant renew using http. It ALWAYS goes to tls-sni
I am on Ubuntu 16.
Certbot 0.28
I see NO references to tls-sni in my conf files anywhere.
I have tried forcing the preferred challenge to HTTP-01.. but it always attempts to use tls-sni
WORKS:
certbot --dry-run
FAILS:
certbot --force-renew
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel): 1
Renewing an existing certificate
Performing the following challenges:
tls-sni-01 challenge for oozora.com
TLS-SNI-01 is deprecated, and will stop working soon.
Waiting for verification...
Cleaning up challenges
Deploying Certificate to VirtualHost /etc/apache2/sites-enabled/000-default-le-ssconf
I have scoured the /etc/letsencrypt folder for ANY references to tls-sni
grep -iRl "tls" ./
(no hits)
I have tried adding HTTP as a preferred challenge both in the client.ini and the domain renewal file itself... again, NO change in behavior.. it continues using tls-sni
welp??