Author Topic: Letsencrypt SSL renew doesn't work  (Read 182 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
Letsencrypt SSL renew doesn't work
« on: June 13, 2018, 12:08:42 PM »
Hi

I have Letsencrypt module enabled and I can see one certificate that expired a few days ago.
However, when I click "renew now" it shows the following message:

"[Wed Jun 13 16:07:36 +04 2018] Renew: 'domainX.com'
[Wed Jun 13 16:07:36 +04 2018] 'domainX.com' is not a issued domain, skip."

I also got a message saying that the DNS are not pointing to this server, and that is correct, they aren't. I am using an A record to point to this server.

How can I solve this please?

Thank you

Offline
***
Re: Letsencrypt SSL renew doesn't work
« Reply #1 on: June 13, 2018, 01:36:52 PM »
.htaccess files can interfere with LE renewals.  If this is the problem, then you will have to rename htaccess temporilly.

Offline
*
Re: Letsencrypt SSL renew doesn't work
« Reply #2 on: June 14, 2018, 06:40:25 AM »
.htaccess files can interfere with LE renewals.  If this is the problem, then you will have to rename htaccess temporilly.

I have installed CWP more than 500 times for my clients and I faced this issue everytime due to .htaccess file. I have to rename the .htaccess file every time to get the SSL working.

Contacted the CWP team but they are not accepting this as a bug.  :(

Offline
***
Re: Letsencrypt SSL renew doesn't work
« Reply #3 on: June 14, 2018, 09:48:20 AM »
It's not a bug. I believe it is a rewrite directive in the htaccess files.    You could have a blank htaccess file and there would be no problem.  Small price to pay for free ssl certs.

Offline
*
Re: Letsencrypt SSL renew doesn't work
« Reply #4 on: June 15, 2018, 05:38:32 AM »
you should only check the part where your htaccess is blocking txt files and remove that part
AntiDDoS Protection (web + mail)
http://centos-webpanel.com/website-ddos-protection-proxy

Join our Development Team and get paid !
http://centos-webpanel.com/develope-modules-for-cwp


Services Monitoring & RBL Monitoring
http://centos-webpanel.com/services-monitor


Do you need Fast and FREE Support included for your CWP linux server?
http://centos-webpanel.com/noc-partner-list
Installation Instructions
http://centos-webpanel.com/installation-instructions
Get Fast Support Here
http://centos-webpanel.com/support-services

Offline
*
Re: Letsencrypt SSL renew doesn't work
« Reply #5 on: June 15, 2018, 08:13:29 AM »
None of the suggestions solved my issue.
I even removed the .htaccess file (and renamed earlier) but the SSL simply does not renew.

In my case, it seems I have LetsEncrypt module installed but I don't know how to uninstall it (should I?): https://dns.d.pr/Vmd2Re

Any other ideas? I am not fussed to use free SSLs. I can easily buy one SSL to avoid these issues. I just need to have CWP letting me install new SSLs instead of keep saying "Error...! A certificate for this domain already exists" even after deleting the SSL from everywhere I can find it or "Error...! Apparently your domain does not point to the DNS of your server ...!"


Offline
*
Re: Letsencrypt SSL renew doesn't work
« Reply #7 on: June 18, 2018, 06:15:24 AM »
Ok,

The only way to fix problem was to rebuild the vhosts first. Once they were rebuilt, the certificate details were correct and showing in the SSL area (finally, some progress here).

Then, and since I don't want to face this issue every 3-4 months over and over I decided to stop using LetsEncrypt certificates and I am using paid certificates for 2-3 years which is way more efficient for my case. 7-8 USD / year is worth my valuable to fix this every time a free certificate expires.

What I still don't get it: why does CWP still says that my domain does not have the DNS pointing to this server? Since the A record is pointing to the server I don't understand the error / warning.

Thank you