Updating a certificate fails, /etc/letsencrypt/keys/cert.pem missing


#1

I use let’s encrypt on a virtualmin server and successfully set up a lot of domains with certificates.

suddenly updating a certificate fails with this message on multiple servers:

Requesting a certificate for domain.com, www.domain.com from Let's Encrypt ..
.. request failed : Expected certificate file /etc/letsencrypt/keys/cert.pem was not found

is this a file which should exist on the server?

this is ubuntu 14.04.5 letsencypt-auto is on 0.9.0


#2

There are no certificates in the /keys/ subdirectory… Could you post the relevant renewal configuration file from /etc/letsencrypt/renewal? It probably has a bad reference to the certificate in one of its options…


#3

I don’t see a reference to this file…

# renew_before_expiry = 30 days
version = 0.9.0
cert = /etc/letsencrypt/live/domain.com/cert.pem
privkey = /etc/letsencrypt/live/domain.com/privkey.pem
chain = /etc/letsencrypt/live/domain.com/chain.pem
fullchain = /etc/letsencrypt/live/domain.com/fullchain.pem

# Options used in the renewal process
[renewalparams]
account = ********************************
authenticator = webroot
rsa_key_size = 2048
installer = None
webroot_path = /home/domain/public_html,
[[webroot_map]]
www.domain.com = /home/domain/public_html
domain.com = /home/domain/public_html

#4

This is actually a virtualmin/webmin related error, and it’s due to the Regex in webmin, and change in output from certbot. check out https://github.com/webmin/webmin/pull/437 for a simple solution


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.