#3691 closed defect (fixed)
debbie.postgis.net ssl has expired
| Reported by: | robe | Owned by: | strk |
|---|---|---|---|
| Priority: | blocker | Milestone: | Website Management, Bots |
| Component: | management | Version: | 2.3.x |
| Keywords: | Cc: |
Description
strk,
You want to renew this. Not sure the process.
When I go to jenkins via https, it no longer works.
I get this message about the certificate:
Subject: debbie.postgis.net Issuer: Let's Encrypt Authority X3 Expires on: Jan 8, 2017 Current date: Jan 21, 2017
Can you renew it.
Change History (3)
comment:1 by , 7 years ago
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
| Version: | → 2.3.x |
comment:2 by , 7 years ago
The cronjob is in place already:
# Every month (the 8th), renew letsencrypt certificates 30 1 8 * * letsencrypt renew >> /var/log/le-renew.log
But, it looks like something is not working as expected:
------------------------------------------------------------------------------- Processing /etc/letsencrypt/renewal/debbie.postgis.net.conf ------------------------------------------------------------------------------- All renewal attempts failed. The following certs could not be renewed: /etc/letsencrypt/live/debbie.postgis.net/fullchain.pem (failure)
The /var/log/letsencrypt/letsencrypt.log.3 file seems to contain the verbose logs of the operation:
2017-01-08 01:30:05,899:WARNING:letsencrypt.renewal:Attempting to renew cert from /etc/letsencrypt/renewal/debbie.postgis.net.conf produced an unexpected error: The apache plugin is not working; there may be problems with your existing configuration.
The error was: NoInstallationError(). Skipping.
2017-01-08 01:30:05,906:DEBUG:letsencrypt.renewal:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/letsencrypt/renewal.py", line 342, in renew_all_lineages
main.obtain_cert(lineage_config, plugins, renewal_candidate)
File "/usr/lib/python2.7/dist-packages/letsencrypt/main.py", line 500, in obtain_cert
installer, auth = plug_sel.choose_configurator_plugins(config, plugins, "certonly")
File "/usr/lib/python2.7/dist-packages/letsencrypt/plugins/selection.py", line 196, in choose_configurator_plugins
diagnose_configurator_problem("authenticator", req_auth, plugins)
File "/usr/lib/python2.7/dist-packages/letsencrypt/plugins/selection.py", line 273, in diagnose_configurator_problem
raise errors.PluginSelectionError(msg)
PluginSelectionError: The apache plugin is not working; there may be problems with your existing configuration.
The error was: NoInstallationError()
Seems to be a known issue: https://github.com/certbot/certbot/issues/1833
I've set the PATH in the crontab, we'll see on Feb 8th if it all works fine
Note:
See TracTickets
for help on using tickets.
That was easier than I thought.
ran -
on server and now done.
Looks like it's good for 3 months so we should probably set a cronjob to renew every 3 months.
Wonder if we should just add this as a cronjob