Required details are appended to this post.
I have a problem RENEWING a few INTERNAL (192.168.0.0) based domain names, these are only used on our LAN and are really only useful to us.
Because they are INTERNAL ip addresses I had to use DNS challenge.
I created them about 3 months ago, they are now due for renewal, but I have problems renewing them. When I created them I followed the instructions to the dot and did not have any problems creating the TXT records, SSL certs etc.
ALL TXT record for the INTERNAL domains (_acme-challenge.*) are still in the ZONE file for the domain, they STILL contain the SAME value when I created them.
I have no problem INTERNALLY doing a “host jack.barrett.com.au”.
I can see the correct “_acme-challenge.jack” TXT record.
How can I update the SSL?
Do I need every time when I update the SSL change the TXT record _acme-challenge.jack?
Do I need to use a different approach CREATING the record?
Am I doing something wrong?
My domain is (INTERNAL DOMAIN!)
I ran this command (CRONTAB)
/usr/local/bin/certbot-auto renew --max-log-backups 25 --non-interactive --no-bootstrap --no-self-upgrade
It produced this output:
Cert is due for renewal, auto-renewing…
Non-interactive renewal: random delay of 235 seconds
Could not choose appropriate plugin: The manual plugin is not working; there may be problems with your existing configuration.
The error was: PluginError(‘An authentication script must be provided with --manual-auth-hook when using the manual plugin non-interactively.’,)
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don’t know):
yes, SSH, keybased
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you’re using Certbot):