Questions tagged [certbot]
The certbot tag has no usage guidance.
56
questions
1
vote
1
answer
29
views
Can’t renew LE certs behind haproxy after upgrade
My previous setup to maintain Let's Encrypt certificates, which worked, was:
WAN -> pfSense -> Ubuntu 18.04 -> haproxy -> certbot v0.27.0 (for renewal)
pfSense forwarded all TCP traffic on ...
0
votes
1
answer
24
views
I cannot change my Nginx configuration no matter what I try
I'm trying to create a subdomain for hosting files and no matter what I try, autoindex doesn't do anything. I can successfully redirect "public.example.com" to "example.com", but ...
0
votes
0
answers
14
views
Docker certbot trouble after relocating data-root
Because of my Docker images/containers filling up my root partition, I've been trying to move the data-root directory of my Docker installation to a different location (current: /usr/lib/docker; ...
1
vote
0
answers
201
views
SSL certificates not being generated with Certbot for Nginx when using Docker
If I understand this correctly what you are required to do is to have a web server being hosted at a specific domain and then execute the certbot command with specific arguments.
I have created a ...
1
vote
1
answer
145
views
What comes first - Certbot or nginx?
I am trying to set up nginx to act as a reverse proxy on a small personal server; however, I am encountering some circular logic when I ask certbot to generate SSL certificates.
From what I can tell, ...
1
vote
1
answer
3k
views
Connection refused when generating a Let's Encrypt certificate for a subdomain
I'm trying to add a subdomain to my Let's Encrypt certificate but it's giving Connection refused.
The command I ran was sudo certbot --expand -d sub.domain.com
Certbot failed to authenticate some ...
0
votes
1
answer
188
views
Certbot frequently/always fails in cron with a hostname mismatch
Update 2023-05-06: Yep. Looks like CentOS7's NetworkManager overwriting /etc/resolv.conf. Haven't had an issue since disabling it.
Update 2023-04-20: It looks like CentOS7's NetworkManager is the ...
0
votes
2
answers
3k
views
How do I auto-renew a manual Certbot cert?
I manually set up a Certbot cert on an EC2 instance so that I could set up a wildcard cert.
Specifically, I used the following command (with the real domain, not example.com) to set up the manual ...
0
votes
1
answer
512
views
Why is it better to configure ACME client to trust private CA root certificate than to add the certificate to the CA store?
I am creating a self-hosted CA for my internal home network as a hobby project and to learn something new. I'm using Smallstep's open-source step-ca and step CLI.
After creating the CA, the next step ...
2
votes
2
answers
15k
views
How to remove Certbot completely ubuntu 20.04
I ran this command sudo dpkg -l *certbot* and I got this certbot and the version number listed in the terminal:
Next I ran this 2 commands sudo apt-get remove certbot and sudo apt autoremove and I ...
1
vote
0
answers
3k
views
PHP webpage downloads instead of opens in browser (nginx, php on debian10 server)
I have a server running Debian 10. I have installed nginx (1.18.0) and php and php-fpm (7.4.28). Following this guide https://landchad.net/index I was able to get html website with certification by ...
1
vote
0
answers
1k
views
Certbot 1.12.0 - How to stop ISRG Root X1 from being signed by DST Root CA X3?
I have an NGINX reverse proxy (nginx/1.21.4 & Debian 11) using certbot (v1.12.0) to get Lets Encrypt certificates for my site. Since the expiry of the DST cert, I had intermittent issues with ...
0
votes
1
answer
442
views
Why is Snappy hanging on any command?
Server is AlmaLinux 8.5 (converted from CentOS).
I had been doing some work to add a new web site which included the usual dnf update and also installing php81-php-fpm and some associated packages. ...
1
vote
1
answer
2k
views
How can I fix cron letsencrypt certbot renew on Ubuntu (SSL3_GET_SERVER_CERTIFICATE, certificate verify failed)?
I have an nginx webserver running with letsencrypt certificates, updated through certbot renew. All on Ubuntu 14.04. Since 1st Oct 2021 I keep getting emails from cron that the certificates could not ...
0
votes
2
answers
302
views
Is it possible to re-enter the process in Linux?
I ran the certbot program to give out a certificate for a domain. During domain verification when the program was running my ssh session with the server crashed. Logging back to the server I wanted to ...