FileNotFoundError: [Errno 2] No such file or directory: 'usr/local/ispconfig/interface/acme'

Discussion in 'Installation/Configuration' started by kmchen, Jan 17, 2020.

  1. kmchen

    kmchen Member

    Hi,
    2 problems with LE renewall today 2020-01-17:

    1/ CERTBOT reports that certificates expire on 2020-02-19 but THUNDERBIRD reports that certificates expire on 2020-01-17

    2/ For certificates ready for renewal, renewall fails with error "FileNotFoundError: [Errno 2] No such file or directory: 'usr/local/ispconfig/interface/acme'"

    /var/log/letsencrypt/letsencrypt.log:
    Code:
    020-01-17 10:20:45,714:DEBUG:certbot.plugins.webroot:Creating root challenges validation dir at usr/local/ispconfig/interface/acme/.well-known/acme-challenge
2020-01-17 10:20:45,714:DEBUG:certbot.error_handler:Encountered exception:
Traceback (most recent call last):
  File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 75, in handle_authorizations
    resp = self._solve_challenges(aauthzrs)
  File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 139, in _solve_challenges
    resp = self.auth.perform(all_achalls)
  File "/usr/lib/python3/dist-packages/certbot/plugins/webroot.py", line 83, in perform
    self._create_challenge_dirs()
  File "/usr/lib/python3/dist-packages/certbot/plugins/webroot.py", line 172, in _create_challenge_dirs
    stat_path = os.stat(path)
FileNotFoundError: [Errno 2] No such file or directory: 'usr/local/ispconfig/interface/acme'
    but:
    Code:
    ks307144 ~ > ll /usr/local/ispconfig/interface/
total 32
drwxr-sr-x  3 ispconfig ispconfig 4096 janv. 19  2019 acme
    Access problem ?
     
    kmchen, Jan 17, 2020
    #1
  2. Steini86

    Steini86 Active Member

    Have you restarted your mail services after certificate renew?
     
    Steini86, Jan 17, 2020
    #2
  3. kmchen

    kmchen Member

    No. When you define a certificate in ISPCONFIG, it doesn't automaticaly manage renewals ?
     
    kmchen, Jan 17, 2020
    #3
  4. Steini86

    Steini86 Active Member

    Only for the websites, for all other services you have to take care for yourself.
     
    Steini86, Jan 17, 2020
    #4
  5. kmchen

    kmchen Member

    Adding a certbot renew -q in crontab is enough ?
     
    kmchen, Jan 18, 2020
    #5
  6. Steini86

    Steini86 Active Member

    enough for what? ISPconfig does an certbot renew automatically which renews all certificates. But it does not restart any mail / ftp / etc services after a new certificate was issued. A "systemctl restart postfix dovecot ..." should do it.
     
    Steini86, Jan 18, 2020
    #6
  7. florian030

    florian030 Well-Known Member HowtoForge Supporter

    Depends on how you use the cert for mail. If you create a symlink for smtpd.{key,cert} to the ssl-crt in /var/ww/client/clientX/weby/ssl, the cert will be renewed. postfix detects this by itself, dovecot needs a restart.
     
    florian030, Jan 18, 2020
    #7
  8. Taleman

    Taleman Well-Known Member HowtoForge Supporter

    Taleman, Jan 18, 2020
    #8

Share This Page