Questions tagged [certbot]
57 questions
21
votes
1 answer
How to add a domain to existing certificate generated by Let’s Encrypt/Certbot?
This question is a continuation of essentially the same question that was closed for being "off-topic" on Stack Overflow.
The OP's question:
I am just simply trying to add the domain test.example.com to the certificate that already exists for…
Mike Godin
- 795
11
votes
2 answers
What is the purpose of chain.pem files?
A general question about chaim.pem files; I used a csr obtained from my host, and used the Certbot from LetsEncrypt to generate a https cert; I used the following command
$ certbot certonly --manual --csr file-with-my-csr.txt
The certbot produced…
joedotnot
- 513
8
votes
3 answers
How do I renew ALL certificates with certbot?
I don't want to only renew the certificates which are going to expire soon. (Whatever soon means). I want to renew all of them to make sure they will be on the same timing in the future.
I cannot find a way to do this with certbot. Any suggestions?
Corporal Touchy
- 467
- 2
- 4
- 12
8
votes
2 answers
certbot: error: unrecognized arguments: --dns-digitalocean-credentials
Trying to execute this command
sudo certbot certonly --dns-digitalocean --dns-digitalocean-credentials ~/.secrets/digitalocean.ini -d "*.example.com" --preferred-challenges dns --server https://acme-v02.api.letsencrypt.org/directory
i get this…
6
votes
1 answer
How to mount Certificates from CertBot to use inside Docker Container
The official certbot ( https://certbot.eff.org ) tool to issue and renew certificates from Let's Encrypt saves the currently valid certificate to ${prefix}/archive/${domain}/certN.pem, where N is an arbitrary number.
The paths that should be used to…
NoMad
- 792
5
votes
2 answers
certbot-auto ImportError: No module named _ssl
Running certbot-auto gives this output:
Error: couldn't get currently installed version for ...
File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/cryptography/hazmat/bindings/openssl/binding.py", line 140, in…
Cam
- 271
3
votes
1 answer
certbot-auto fails to install automatic renewal?
I am using kernel 3.10 on CentOS 7. I have successfully installed CertBot 1.10.1 using alternative installation instructions as certbot-auto. Running certbot-auto successfully generated certificates for my nginx (1.7.8) installation. Simulating…
Alex
- 192
- 9
2
votes
2 answers
How to remove Certbot completely ubuntu 20.04
I ran this command sudo dpkg -l *certbot* and I got this certbot and the version number listed in the terminal:
Next I ran this 2 commands sudo apt-get remove certbot and sudo apt autoremove and I though the certbot would be removed. But when I ran…
Nat
- 121
- 1
- 1
- 2
1
vote
1 answer
Can’t renew LE certs behind haproxy after upgrade
My previous setup to maintain Let's Encrypt certificates, which worked, was:
WAN -> pfSense -> Ubuntu 18.04 -> haproxy -> certbot v0.27.0 (for renewal)
pfSense forwarded all TCP traffic on port 80 and 443 to Ubuntu. haproxy knew about the LE certs,…
Craig
- 475
1
vote
0 answers
SSL certificates not being generated with Certbot for Nginx when using Docker
If I understand this correctly what you are required to do is to have a web server being hosted at a specific domain and then execute the certbot command with specific arguments.
I have created a directory in my VPS named live under that I created…
Zoumath
- 11
1
vote
1 answer
What comes first - Certbot or nginx?
I am trying to set up nginx to act as a reverse proxy on a small personal server; however, I am encountering some circular logic when I ask certbot to generate SSL certificates.
From what I can tell, certbot is supposed to modify the nginx.conf file…
henley
- 21
1
vote
1 answer
Connection refused when generating a Let's Encrypt certificate for a subdomain
I'm trying to add a subdomain to my Let's Encrypt certificate but it's giving Connection refused.
The command I ran was sudo certbot --expand -d sub.domain.com
Certbot failed to authenticate some domains (authenticator: apache). The Certificate…
kryz
- 33
1
vote
0 answers
PHP webpage downloads instead of opens in browser (nginx, php on debian10 server)
I have a server running Debian 10. I have installed nginx (1.18.0) and php and php-fpm (7.4.28). Following this guide https://landchad.net/index I was able to get html website with certification by certbot running. Then I wanted to use php to have…
Vojta Klimes
- 111
1
vote
0 answers
Certbot 1.12.0 - How to stop ISRG Root X1 from being signed by DST Root CA X3?
I have an NGINX reverse proxy (nginx/1.21.4 & Debian 11) using certbot (v1.12.0) to get Lets Encrypt certificates for my site. Since the expiry of the DST cert, I had intermittent issues with Firefox 96 (sometimes it loads the site, other times it…
user1239807
1
vote
1 answer
How can I fix cron letsencrypt certbot renew on Ubuntu (SSL3_GET_SERVER_CERTIFICATE, certificate verify failed)?
I have an nginx webserver running with letsencrypt certificates, updated through certbot renew. All on Ubuntu 14.04. Since 1st Oct 2021 I keep getting emails from cron that the certificates could not be renewed:
Attempting to renew cert (joov.de)…
Johannes Overmann
- 911
- 3
- 9
- 19