Unable to renew SSL for subdomain


I am using webmain to renew SSL. But when renewing SSL for subdomain showing following error:-

2023-03-27 13:27:55,520:DEBUG:certbot._internal.main:certbot version: 1.11.0
2023-03-27 13:27:55,520:DEBUG:certbot._internal.main:Location of certbot entry point: /bin/letsencrypt
2023-03-27 13:27:55,520:DEBUG:certbot._internal.main:Arguments:
2023-03-27 13:27:55,520:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2023-03-27 13:27:55,538:DEBUG:certbot._internal.log:Root logging level set at 20
2023-03-27 13:27:55,538:INFO:certbot._internal.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2023-03-27 13:27:55,540:WARNING:certbot._internal.cert_manager:Renewal configuration file /etc/letsencrypt/renewal/abcd.abcd.com-0001.conf produced an unexpected error: expected /etc/letsencrypt/live/abcd.abcd.com-0001/cert.pem to be a symlink. Skipping.
2023-03-27 13:27:55,541:DEBUG:certbot._internal.cert_manager:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python2.7/site-packages/certbot/_internal/cert_manager.py", line 79, in certificates
renewal_candidate = storage.RenewableCert(renewal_file, config)
File "/usr/lib/python2.7/site-packages/certbot/_internal/storage.py", line 470, in init
File "/usr/lib/python2.7/site-packages/certbot/_internal/storage.py", line 537, in _check_symlinks
"expected {0} to be a symlink".format(link))
CertStorageError: expected /etc/letsencrypt/live/abcd.abcd.com-0001/cert.pem to be a symlink

The following renewal configurations were invalid:

expected /etc/letsencrypt/live/abcd.abcd.com-0001/cert.pem to be a symlink

I'd nuke certbot config:
and not sure why it triggers python 2.7 - it should call python3



I am using Webmin plugin Cerbot to renew SSL.

Using Let's Debug yields these results https://letsdebug.net/abcd.abcd.com/1423004 three of the four FATAL errors are DNS Lookup failed.

1 Like

Hi @anupsadhu, and welcome to the LE community forum :slight_smile:

Please use the real name of the domain you are using.
"abcd.abcd.com" is a real domain that belongs to somebody/somewhere.

Seeing "-000x" means something has not gone as expected:

Please show:
certbot certificates


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.