Win-acme cannot renew cert

i am using wacs on a windows 2008 IIS server. the installation went flawlessly and the 1st cert was received. now 3 months later the automatic renewal setup is failing with this message:

C:\wacs>wacs --renew --baseuri “https://acme-v02.api.letsencrypt.org/

[INFO] A simple Windows ACMEv2 client (WACS)
[INFO] Software version 2.1.2.641 (RELEASE, PLUGGABLE)
[INFO] IIS version 7.5
[INFO] Running with administrator credentials
[INFO] Scheduled task looks healthy
[INFO] Please report issues at https://github.com/PKISharp/win-acme
[EROR] Unable to read renewal Jpi86wDGkkKmoiQrl5c8Tg.renewal.json: result is empty
[WARN] No scheduled renewals found.

i haven’t found any help online for this issue. does anyone know how to fix this?

IIS 7.5 doesn’t support SNI.
Is there only one site?
Have you added any new sites since you got the cert?

yes, just one site being served on the machine. no new sites added.

Try placing a test text file (with no extension) in the expected challenge location.
And try accessing it from the Internet:
http://your.domain/.well-known/acme-challenge/test-file-name

And also update to the latest version of wacs.

i downloaded the latest wacs, are there instructions for updating wacs?

https://www.win-acme.com/
Latest version seems to be 2.1.8.838
Yours is 2.1.2.641

yes, i have the latest. is there a procedure for upgrading? can’t seem to find anything information on this.

This is all I could find:
https://www.win-acme.com/manual/upgrading/to-v2.1.0

thanks, looks like it’s just a straight copy over. so the new version reports pretty much the same error:
s>, referer: https://secure.mercuri.ca/viewer/index.php?meetingid=438215
[Fri Jun 05 16:54:25.227128 2020] [php7:notice] [pid 12948:tid 140400907593472] [client 207.236.151.162:56327] tryserver MULTIMESSAGES received=2, data=<?xml version='1.0' encoding='utf-8'?>Talker036D50, referer: https://secure.mercuri.ca/viewer/index.php?meetingid=438215
[Fri Jun 05 16:54:25.227149 2020] [php7:notice] [pid 12948:tid 140400907593472] [client 207.236.151.162:56327] tryserver: count=2, returning: <?xml version='1.0' encoding='utf-8'?>Talker036D50, referer: https://secure.mercuri.ca/viewer/index.php?meetingid=438215
[Fri Jun 05 16:54:25.227270 2020] [php7:notice] [pid 12948:tid 140400907593472] [client 207.236.151.162:56327] tryserver: Socket closed, referer: https://secure.mercuri.ca/viewer/index.php?meetingid=438215
[Fri Jun 05 16:54:25.269757 2020] [php7:notice] [pid 12948:tid 140400907593472] [client 207.236.151.162:56327] PHP Notice: Undefined variable: name in /var/www/html/selfcare/viewer/tryserver.php on line 21, referer: https://secure.mercuri.ca/viewer/index.php?meetingid=438215

Thanks, seems to just be a copy. seems to report the same error though:
C:\wacs>wacs --renew --baseuri “https://acme-v02.api.letsencrypt.org/

A simple Windows ACMEv2 client (WACS)
Software version 2.1.8.838 (RELEASE, PLUGGABLE)
ACME server https://acme-v02.api.letsencrypt.org/
IIS version 7.5
Running with administrator credentials
Scheduled task looks healthy
Please report issues at https://github.com/win-acme/win-acme
Unable to read renewal Jpi86wDGkkKmoiQrl5c8Tg.renewal.json: result is empty
No scheduled renewals found.

I guess you will have to go here:

Thanks for the help :slight_smile:

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.