Hi guys, i am running ubuntu 20.04 with ispconfig 3.2 when i setup a new domain there is an error with the ssl certificate Code: root@server4:/var/log/letsencrypt# tail -f letsencrypt.log 2021-01-24 15:36:13,337:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log 2021-01-24 15:36:13,379:WARNING:certbot.cert_manager:Renewal configuration file /etc/letsencrypt/renewal/sonniger-lebensabend.com.conf produced an unexpected error: renewal config file {} is missing a required file reference. Skipping. 2021-01-24 15:36:13,380:DEBUG:certbot.cert_manager:Traceback was: Traceback (most recent call last): File "/usr/lib/python3/dist-packages/certbot/cert_manager.py", line 79, in certificates renewal_candidate = storage.RenewableCert(renewal_file, config) File "/usr/lib/python3/dist-packages/certbot/storage.py", line 444, in __init__ raise errors.CertStorageError( certbot.errors.CertStorageError: renewal config file {} is missing a required file reference maybe you can help me with this issue and how to resolve it? thanks a lot
Can you try running Code: mv /etc/letsencrypt/renewal/sonniger-lebensabend.com.conf /etc/letsencrypt/renewal/sonniger-lebensabend.com.conf.bak and then enabling LE again for that site?
hi, thanks for your answer. after i made according to your advice i get the following error: Code: 2021-01-24 17:24:36,757:DEBUG:acme.client:Storing nonce: 0003oZdN7FUktmFQBLJ8ttRyxk3XuiDR9dDJ9NvY0tDVP24 2021-01-24 17:24:36,758:DEBUG:certbot.log:Exiting abnormally: Traceback (most recent call last): File "/bin/letsencrypt", line 11, in <module> load_entry_point('certbot==0.40.0', 'console_scripts', 'certbot')() File "/usr/lib/python3/dist-packages/certbot/main.py", line 1382, in main return config.func(config, plugins) File "/usr/lib/python3/dist-packages/certbot/main.py", line 1265, in certonly lineage = _get_and_save_cert(le_client, config, domains, certname, lineage) File "/usr/lib/python3/dist-packages/certbot/main.py", line 121, in _get_and_save_cert lineage = le_client.obtain_and_enroll_certificate(domains, certname) File "/usr/lib/python3/dist-packages/certbot/client.py", line 431, in obtain_and_enroll_certificate return storage.RenewableCert.new_lineage( File "/usr/lib/python3/dist-packages/certbot/storage.py", line 1003, in new_lineage raise errors.CertStorageError( certbot.errors.CertStorageError: archive directory exists for sonniger-lebensabend.com 2021-01-24 17:24:37,674:DEBUG:certbot.main:certbot version: 0.40.0 2021-01-24 17:24:37,675:DEBUG:certbot.main:Arguments: ['--domains', 'sonniger-lebensabend.com', '--domains', 'www.sonniger-lebensabend.com'] 2021-01-24 17:24:37,675:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2021-01-24 17:24:37,686:DEBUG:certbot.log:Root logging level set at 20 2021-01-24 17:24:37,686:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log 2021-01-24 17:24:38,166:WARNING:certbot.cert_manager:Renewal configuration file /etc/letsencrypt/renewal/sonniger-lebensabend.com.conf produced an unexpected error: renewal config file {} is missing a required file reference. Skipping. 2021-01-24 17:24:38,168:DEBUG:certbot.cert_manager:Traceback was: Traceback (most recent call last): File "/usr/lib/python3/dist-packages/certbot/cert_manager.py", line 79, in certificates renewal_candidate = storage.RenewableCert(renewal_file, config) File "/usr/lib/python3/dist-packages/certbot/storage.py", line 444, in __init__ raise errors.CertStorageError( certbot.errors.CertStorageError: renewal config file {} is missing a required file reference i have problems many times with this server and ssl cert, would it be wise to change the accounts to another new server? i still have some vps available
What you could try is disabling LE from the UI, removing all related files to this cert (including symlinked files to it) and then enabling LE again.
hi thanks for your quick answer. UI = ? disable LE only for this domain in ISPConfig? where do i remove all relates files to this cert? /etc/letsencrypt/renewal thank you for your help
UI = user interface, so yes, ISPConfig. Under /etc/letsencrypt there are several subfolders for this cert. And also remove the symlink in the ssl folder of that web.
Hi there, i deleted the files in /etc/letsencrypt/renewal Code: sonniger-lebensabend.com.conf sonniger-lebensabend.com.conf.bak sonniger-lebensabend.com.conf~backup and in ISPConfig in web domain / domain i uncheck the box SSL and Lets Encrypt SSL then check the box again but i get the same error in the logs Maybe i did not do it right? thanks a lot for care about my issue
Try to delete the cert like this: sudo certbot delete --cert-name sonniger-lebensabend.com and then try to get a new cert trough ispconfig.
hi thanks for your answer Code: root@server4:/etc/letsencrypt/renewal# certbot delete --cert-name sonniger-lebensabend.com Saving debug log to /var/log/letsencrypt/letsencrypt.log No certificate found with name sonniger-lebensabend.com (expected /etc/letsencrypt/renewal/sonniger-lebensabend.com.conf). root@server4:/etc/letsencrypt/renewal# did i make something wrong with delete this certificate?
Seems to me as if the cert has been deleted already. So you should get a different error (or no error) now when you try to obtain a new ssl cert by activating the let's encrypt checkbox in ispconfig.