Lets Encrypt certificate registration fails, but is apparently succesfull

Discussion in 'ISPConfig 3 Priority Support' started by Alexander Foti, Feb 22, 2021.

Page 2 of 2
  1. Alexander Foti

    Alexander Foti Member HowtoForge Supporter

    Yes, I agree, I think certbot has been used from the beginning and acme from december. Here is the output:

    Code:
     ls -la /root/.acme.sh
total 268
drwx------ 13 root root   4096 Feb 22 11:34 .
drwx------  4 root root   4096 Feb 12 19:13 ..
-rw-r--r--  1 root root    225 Feb 22 11:34 account.conf
-rwxr-xr-x  1 root root 206860 Dec 13 13:27 acme.sh
-rw-r--r--  1 root root     78 Dec 13 13:27 acme.sh.env
drwxr-xr-x  3 root root   4096 Dec 13 13:36 ca
drwxr-xr-x  3 root root   4096 Dec 13 13:36 website11.co.uk
drwxr-xr-x  3 root root   4096 Jan 21 07:14 cp2.controlpaneldomain.com
drwxr-xr-x  2 root root   4096 Dec 13 13:27 deploy
drwxr-xr-x  3 root root   4096 Feb 22 09:12 website14.com
drwxr-xr-x  2 root root   4096 Dec 13 13:27 dnsapi
drwxr-xr-x  3 root root   4096 Dec 13 14:41 website15.co.uk
drwxr-xr-x  3 root root   4096 Feb 22 11:34 website16.com
drwxr-xr-x  3 root root   4096 Feb 12 10:25 website17.com
drwxr-xr-x  3 root root   4096 Feb  8 16:46 website18.com
-rw-r--r--  1 root root    504 Feb 22 11:34 http.header
drwxr-xr-x  2 root root   4096 Dec 13 13:27 notify
     
    Alexander Foti, Feb 22, 2021
    #21
  2. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    At this point, it is probably best to purge certbot and let acme.sh issue new certs for your sites, seeing you don't have too many domains either. It can be quite a pain in the *** with unexpected things coming up and it can lead to downtime, so you have to keep your head cool and work with a plan, and know what to do if things go south.
     
    Th0m, Feb 22, 2021
    #22
  3. Alexander Foti

    Alexander Foti Member HowtoForge Supporter

    I agree. So, how do I get the system to start looking for acme to issue the certs EG the site with issues (dieselbikeforum.com)
     
    Alexander Foti, Feb 22, 2021
    #23
  4. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    This will happen automatically when certbot is removed - after resolving that conflict, you should look at issueing new certs, and see if there are still problems with that.
     
    Th0m, Feb 22, 2021
    #24
  5. Alexander Foti

    Alexander Foti Member HowtoForge Supporter

    OK thanks, I will snapshot the VM out of hours, and then do apt-get remove certbot-auto and see what happens.
     
    Alexander Foti, Feb 22, 2021
    #25
  6. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    Yes, and remember that some certs will be symlinked to /etc/letsencrypt/live folder, so you might want to disable LE for the domains before removing certbot, and then remove the certs from the ssl folder of the webs.
     
    Th0m, Feb 22, 2021
    #26
Page 2 of 2

Share This Page