022-09-26 18:34:06,980:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 > 2022-09-26 18:34:07,518:DEBUG:certbot._internal.main:certbot version: 1.30.0 2022-09-26 18:34:07,519:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/2343/bin/certbot 2022-09-26 18:34:07,519:DEBUG:certbot._internal.main:Arguments: ['--nginx', '--preconfigured-renewal'] 2022-09-26 18:34:07,519:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,Plug> 2022-09-26 18:34:07,534:DEBUG:certbot._internal.log:Root logging level set at 30 2022-09-26 18:34:07,536:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx 2022-09-26 18:34:07,690:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx Description: Nginx Web Server plugin Interfaces: Installer, Authenticator, Plugin Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator Initialized: Prep: True 2022-09-26 18:34:07,692:DEBUG:certbot._internal.plugins.selection:Selected authenticator 2022-09-26 18:34:07,692:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx 2022-09-26 18:34:07,894:DEBUG:certbot._internal.main:Picked account: 2022-09-26 18:34:07,896:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory. 2022-09-26 18:34:07,899:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443 2022-09-26 18:34:08,780:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 659 2022-09-26 18:34:08,781:DEBUG:acme.client:Received response: HTTP 200 Server: nginx Date: Mon, 26 Sep 2022 18:34:08 GMT Content-Type: application/json Content-Length: 659 Connection: keep-alive Cache-Control: public, max-age=0, no-cache X-Frame-Options: DENY Strict-Transport-Security: max-age=604800 { "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change", "meta": { "caaIdentities": [ "letsencrypt.org" ], "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf", "website": "https://letsencrypt.org" }, "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct", "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order", "pBDmZsiPYm0": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417", "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert" } 2022-09-26 18:34:11,058:DEBUG:urllib3.connectionpool:Starting new HTTP connection (1): r3.o.lencr.org:80 2022-09-26 18:34:11,355:DEBUG:urllib3.connectionpool:http://r3.o.lencr.org:80 "POST / HTTP/1.1" 200 503 2022-09-26 18:34:11,358:DEBUG:certbot.ocsp:OCSP response for certificate /etc/letsencrypt/archive/erptest.tjomtek.co.za/cert1.pem is signed b> 2022-09-26 18:34:11,360:DEBUG:certbot.ocsp:OCSP certificate status for /etc/letsencrypt/archive/erptest.tjomtek.co.za/cert1.pem is: OCSPCertS> 2022-09-26 18:34:11,363:DEBUG:certbot._internal.display.obj:Notifying user: Certificate not yet due for renewal 2022-09-26 18:34:18,328:INFO:certbot._internal.main:Keeping the existing certificate 2022-09-26 18:34:18,329:DEBUG:certbot._internal.display.obj:Notifying user: Deploying certificate 2022-09-26 18:34:18,333:INFO:certbot_nginx._internal.configurator:Deploying Certificate to VirtualHost /etc/nginx/sites-enabled/default 2022-09-26 18:34:18,333:DEBUG:certbot._internal.display.obj:Notifying user: Successfully deployed certificate for erptest.tjomtek.co.za to /e> 2022-09-26 18:34:18,334:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf 2022-09-26 18:34:18,334:DEBUG:certbot.reverter:Creating backup of /etc/nginx/modules-enabled/50-mod-http-image-filter.conf 2022-09-26 18:34:18,334:DEBUG:certbot.reverter:Creating backup of /etc/nginx/modules-enabled/50-mod-mail.conf 2022-09-26 18:34:18,334:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/default 2022-09-26 18:34:18,335:DEBUG:certbot.reverter:Creating backup of /etc/letsencrypt/options-ssl-nginx.conf 2022-09-26 18:34:18,335:DEBUG:certbot.reverter:Creating backup of /etc/nginx/modules-enabled/50-mod-http-xslt-filter.conf 2022-09-26 18:34:18,335:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types 2022-09-26 18:34:18,335:DEBUG:certbot.reverter:Creating backup of /etc/nginx/modules-enabled/50-mod-stream.conf 2022-09-26 18:34:18,336:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/sites-enabled/default: ## # You should look at the following URL's in order to grasp a solid understanding # of Nginx configuration files in order to fully unleash the power of Nginx. # https://www.nginx.com/resources/wiki/start/ # https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/ # https://wiki.debian.org/Nginx/DirectoryStructure # # In most cases, administrators will remove this file from sites-enabled/ and # leave it as reference inside of sites-available where it will continue to be # updated by the nginx packaging team. # # This file will automatically load configuration files provided by other # applications, such as Drupal or Wordpress. These applications will be made # available underneath a path with that package name, such as /drupal8. # # Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples. ## # Default server configuration # server { # SSL configuration # # listen 443 ssl default_server; # listen [::]:443 ssl default_server; # # Note: You should disable gzip for SSL traffic. # See: https://bugs.debian.org/773332 # # Read up on ssl_ciphers to ensure a secure configuration. # See: https://bugs.debian.org/765782 # # Self signed certs generated by the ssl-cert package # Don't use them in a production server! # # include snippets/snakeoil.conf; root /var/www/html; # Add index.php to the list if you are using PHP index index.html index.htm index.nginx-debian.html; server_name erptest.tjomtek.co.za; location / { # First attempt to serve request as file, then # as directory, then fall back to displaying a 404. try_files $uri $uri/ =404; } # pass PHP scripts to FastCGI server # #location ~ \.php$ { # include snippets/fastcgi-php.conf; # # # With php-fpm (or other unix sockets): # fastcgi_pass unix:/var/run/php/php7.4-fpm.sock; # # With php-cgi (or other tcp sockets): # fastcgi_pass 127.0.0.1:9000; #} # deny access to .htaccess files, if Apache's document root # concurs with nginx's one # #location ~ /\.ht { # deny all; #} listen [::]:443 ssl ipv6only=on; # managed by Certbot listen 443 ssl; # managed by Certbot ssl_certificate /etc/letsencrypt/live/erptest.tjomtek.co.za/fullchain.pem; # managed by Certbot ssl_certificate_key /etc/letsencrypt/live/erptest.tjomtek.co.za/privkey.pem; # managed by Certbot include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot } # Virtual Host configuration for example.com # # You can move that to a different file under sites-available/ and symlink that # to sites-enabled/ to enable it. # #server { # listen 80; # listen [::]:80; # # server_name example.com; # # root /var/www/example.com; # index index.html; # # location / { # try_files $uri $uri/ =404; # } server { if ($host = erptest.tjomtek.co.za) { return 301 https://$host$request_uri; } # managed by Certbot listen 80 default_server; listen [::]:80 default_server; server_name erptest.tjomtek.co.za; return 404; # managed by Certbot } 2022-09-26 18:34:18,338:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/sites-enabled/default: ## # You should look at the following URL's in order to grasp a solid understanding # of Nginx configuration files in order to fully unleash the power of Nginx. # https://www.nginx.com/resources/wiki/start/ # https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/ # https://wiki.debian.org/Nginx/DirectoryStructure # # In most cases, administrators will remove this file from sites-enabled/ and # leave it as reference inside of sites-available where it will continue to be # updated by the nginx packaging team. # # This file will automatically load configuration files provided by other # applications, such as Drupal or Wordpress. These applications will be made # available underneath a path with that package name, such as /drupal8. # # Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples. ## # Default server configuration # server { # SSL configuration # # listen 443 ssl default_server; # listen [::]:443 ssl default_server; # # Note: You should disable gzip for SSL traffic. # See: https://bugs.debian.org/773332 # # Read up on ssl_ciphers to ensure a secure configuration. # See: https://bugs.debian.org/765782 # # Self signed certs generated by the ssl-cert package # Don't use them in a production server! # # include snippets/snakeoil.conf; root /var/www/html; # Add index.php to the list if you are using PHP index index.html index.htm index.nginx-debian.html; server_name erptest.tjomtek.co.za; location / { # First attempt to serve request as file, then # as directory, then fall back to displaying a 404. try_files $uri $uri/ =404; } # pass PHP scripts to FastCGI server # #location ~ \.php$ { # include snippets/fastcgi-php.conf; # # # With php-fpm (or other unix sockets): # fastcgi_pass unix:/var/run/php/php7.4-fpm.sock; # # With php-cgi (or other tcp sockets): # fastcgi_pass 127.0.0.1:9000; #} # deny access to .htaccess files, if Apache's document root # concurs with nginx's one # #location ~ /\.ht { # deny all; #} listen [::]:443 ssl ipv6only=on; # managed by Certbot listen 443 ssl; # managed by Certbot ssl_certificate /etc/letsencrypt/live/erptest.tjomtek.co.za/fullchain.pem; # managed by Certbot ssl_certificate_key /etc/letsencrypt/live/erptest.tjomtek.co.za/privkey.pem; # managed by Certbot include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot } # Virtual Host configuration for example.com # # You can move that to a different file under sites-available/ and symlink that # to sites-enabled/ to enable it. # #server { # listen 80; # listen [::]:80; # # server_name example.com; # # root /var/www/example.com; # index index.html; # # location / { # try_files $uri $uri/ =404; # } server { if ($host = erptest.tjomtek.co.za) { return 301 https://$host$request_uri; } # managed by Certbot listen 80 default_server; listen [::]:80 default_server; server_name erptest.tjomtek.co.za; return 404; # managed by Certbot } 2022-09-26 18:34:20,383:DEBUG:certbot._internal.display.obj:Notifying user: Congratulations! You have successfully enabled HTTPS on https://e> 2022-09-26 18:34:20,385:DEBUG:certbot._internal.display.obj:Notifying user: If you like Certbot, please consider supporting our work by: * Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate * Donating to EFF: https://eff.org/donate-le