Troubleshoot When Let's Encrypt Renewal Is Not Working

January 21, 2019

Check renewal configuration at /etc/letsencrypt/renewal/.

Content of www.mydomain.com.

# renew_before_expiry = 30 days
version = 0.22.2
archive_dir = /etc/letsencrypt/archive/www.mydomain.com
cert = /etc/letsencrypt/live/www.mydomain.com/cert.pem
privkey = /etc/letsencrypt/live/www.mydomain.com/privkey.pem
chain = /etc/letsencrypt/live/www.mydomain.com/chain.pem
fullchain = /etc/letsencrypt/live/www.mydomain.com/fullchain.pem

# Options used in the renewal process
[renewalparams]
authenticator = webroot
installer = nginx
account = bf2a***

Test renewal.

certbot renew --cert-name www.mydomain.com --dry-run

My original renewal through webroot authenticator is failing because of missing /.well-known/acme-challenge directory.

I switch to nginx authentication to solve the issue.

certbot renew --cert-name www.mydomain.com --nginx

List all certbox certificates.

certbot certificates

By Desmond Lua

A dream boy who enjoys programming and travelling, maker of Travelopy. Follow me on @d_luaz.

Tags:

Setup Let's Encrypt SSL For Nginx On Ubuntu

Obtain Let's Encrypt SSL Certificate Using Manual DNS Verification

How to Restore a Deleted Let's Encrypt Cert (Nginx Authenticator, Certbot)

Delete Lets Encrypt Certificates (Certbot)

Update Certbot On Ubuntu

Lets Encrypt Delete Certificate And Config After Staging

Deploy Let's Encrypt SSL On Google App Engine (Full Automation)

How To Install Latest Version Of Certbot