Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
N
N
nuclear_kote2020-05-26 00:25:07
Digital certificates
nuclear_kote, 2020-05-26 00:25:07

Why is the certificate not updated?

sudo certbot renew --dry-run
Password:
Saving debug log to /var/log/letsencrypt/letsencrypt.log

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/mydomain.ru.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator apache, Installer apache
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for mydomain.ru
Waiting for verification...
Challenge failed for domain mydomain.ru
http-01 challenge for mydomain.ru
Cleaning up challenges
Attempting to renew cert (mydomain.ru) from /etc/letsencrypt/renewal/mydomain.ru.conf produced an unexpected error: Some challenges have failed.. Skipping.
All renewal attempts failed. The following certs could not be renewed:
  /etc/letsencrypt/live/mydomain.ru/fullchain.pem (failure)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
** DRY RUN: simulating 'certbot renew' close to cert expiry
**          (The test certificates below have not been saved.)

All renewal attempts failed. The following certs could not be renewed:
  /etc/letsencrypt/live/mydomain.ru/fullchain.pem (failure)
** DRY RUN: simulating 'certbot renew' close to cert expiry
**          (The test certificates above have not been saved.)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1 renew failure(s), 0 parse failure(s)

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: mydomain.ru
   Type:   connection
   Detail: Fetching
   http://mydomain.ru/.well-known/acme-challenge/_Sp2hyssssssDmbziNT5qwVPvXTqMOpnz9AL0:
   Connection refused


as I understand it, he needs to write somewhere the path where to put this _Sp2hyssssssDmbziNT5qwVPvXTqMOpnz9AL0

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
K
ky0, 2020-05-26
@nuclear_kote

If you confirm domain ownership via HTTP, you need to add something like this to the block responsible for processing requests to your domain on port 80:

location /.well-known/acme-challenge {
                root /var/www/letsencrypt;
        }

The directory in which the challenge file will be placed is configured by Certbot with the Z.Y. directive -w /var/www/letsencrypt
. - noticed that you didn't specify which webserver you have. My example is relevant for nginx.

Similar questions
B
blabs2015-01-03 21:13:04
What certificate is needed to collect and process user data on the site? 3Reply
G
gahcep2013-01-07 14:32:53
SSL certificates as a program licensing mechanism 2Reply
A
Andrey2018-05-16 10:21:45
Where to store key or certificate files? 2Reply
R
resident2013-01-23 02:03:41
How to set up https in Apache with your own certificate for the domain? 3Reply
L
lagudal2018-05-24 09:45:36
How to properly configure ssl for wordpess located in a subdirectory? 0Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question