堆栈内存溢出
  简体   繁体   English

无法使用 certbot 更新 SSL 证书

[英]Unable to renew SSL certificate using certbot

 原文  2022-07-05 17:19:29       nginx/ ssl/ lets-encrypt/ cert

问题描述

I'm trying to renew my SSL certificate in my AWS EC2 server, but I'm getting the following error so after a lot of research I couldn't find the solution.我正在尝试在我的 AWS EC2 服务器中更新我的 SSL 证书,但我收到以下错误,所以经过大量研究后我找不到解决方案。

The command I run:我运行的命令:

$ sudo certbot renew --dry-run

Error:错误:

Saving debug log to /var/log/letsencrypt/letsencrypt.log

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/mydomain.com.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator nginx, Installer nginx
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for mydomain.com
Using default addresses 80 and [::]:80 ipv6only=on for authentication.
Waiting for verification...
Challenge failed for domain mydomain.com
http-01 challenge for mydomain.com
Cleaning up challenges
Attempting to renew cert (mydomain.com) from /etc/letsencrypt/renewal/prod-mydomain.conf produced an unexpected error: Some challenges have failed.. Skipping.
All renewal attempts failed. The following certs could not be renewed:
  /etc/letsencrypt/live/mydomain.com/fullchain.pem (failure)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

All renewal attempts failed. The following certs could not be renewed:
  /etc/letsencrypt/live/mydomain.com/fullchain.pem (failure)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1 renew failure(s), 0 parse failure(s)

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: mydmain.com
   Type:   unauthorized
   Detail: 2.211.168.8: Invalid response from
   http://mydoamin.com/.well-known/acme-challenge/ov6EBHInETwkZZ-oqLNI908jFXvN7PFK86ZCJYcdrtA:
   404

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address.

1 个解决方案

解决方案1
 0  2022-07-06 08:06:05

Based on the error given, you need to ensure that the domain that you are trying to create the certificate for is pointing to the server.根据给出的错误,您需要确保您尝试为其创建证书的域指向服务器。

You probably need a A DNS entry for mydmain.com pointing to your server IP.您可能需要一个指向您的服务器 IP 的mydmain.com A DNS 条目。

I believe this is how LetsEncrypt ensure ownership of the domain.我相信这就是 LetsEncrypt 确保域所有权的方式。 https://letsencrypt.org/getting-started/ https://letsencrypt.org/getting-started/

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 无法使用 nginx (certbot) 将让我们加密 ssl 证书添加到域 - Unable to add Let's encrypt ssl certificate to domains using nginx (certbot) 如何在 docker 中使用 certbot 正确安装 ssl 证书? - How correctly install ssl certificate using certbot in docker? SSL 证书适用于子域,但不适用于使用 cloudflare 和 certbot 的主域 - SSL certificate works on subdomain but not main domain using cloudflare and certbot Certbot 获取 ssl 证书 HAproxy - Certbot get ssl certificate HAproxy 使用付费的 ssl 证书续订过期的 ssl 证书 - Renew an expired ssl certificate with a paid ssl certificate Certbot SSL证书无效 - Certbot SSL certificate doesn't work 如何使用 docker-nginx-certbot 创建我的域(包括 www)的 SSL 证书? - How do I create a SSL certificate my domain including www using docker-nginx-certbot? 在 nginx 中通过 certbot 安装 ssl 证书后网站关闭 - website down after installing ssl certificate through certbot in nginx 使用 certbot 应用 Let's Encrypt 证书:授权程序失败 - Using certbot to apply Let's Encrypt Certificate: Failed authorization procedure ssl 与 certbot 和 ubuntu 上的 nginx - ssl with certbot and nginx on ubuntu
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM