#2 renew fallisce se un singolo nome fallisce (es, dominio scaduto)

Avoinna
2 vuotta sitten avasi jigen · 1 kommenttia
jigen kommentoitu 2 vuotta sitten

Per esempio in questo caso totallynot.science e' scaduto e non rinnovato. Il fallimento comporta il non rinnovo del certificato che pero' riguarda tutti i domani.

mail01:/etc/letsencrypt/live# cd /usr/local/ortiche/otcerts/ && /usr/bin/python3 OTcerts.py --mbox --renew
INFO:root:Renewing certificates                                              
Your system is not supported by certbot-auto anymore.                          
certbot-auto and its Certbot installation will no longer receive updates.                                                                             
You will not receive any bug fixes including those fixing server compatibility           
or security problems.                                                                   
Please visit https://certbot.eff.org/ to check for other alternatives.                          
Challenge failed for domain smtp.totallynot.science                                                         
Attempting to renew cert (mail.indivia.net) from /etc/letsencrypt/renewal/mail.indivia.net.conf produced an unexpected error: Some challenges have fai
led.. Skipping.                                                                                                  
Challenge failed for domain imap.totallynot.science                                    
Challenge failed for domain pop3.totallynot.science                                
Attempting to renew cert (mbox.indivia.net) from /etc/letsencrypt/renewal/mbox.indivia.net.conf produced an unexpected error: Some challenges have fai
led.. Skipping.                                                                                          
All renewal attempts failed. The following certs could not be renewed:         
  /etc/letsencrypt/live/mail.indivia.net/fullchain.pem (failure)                                                 
  /etc/letsencrypt/live/mbox.indivia.net/fullchain.pem (failure)                                                                                      
2 renew failure(s), 0 parse failure(s)                                                                                                                
INFO:root:Done renew   
Per esempio in questo caso totallynot.science e' scaduto e non rinnovato. Il fallimento comporta il non rinnovo del certificato che pero' riguarda tutti i domani. ``` mail01:/etc/letsencrypt/live# cd /usr/local/ortiche/otcerts/ && /usr/bin/python3 OTcerts.py --mbox --renew INFO:root:Renewing certificates Your system is not supported by certbot-auto anymore. certbot-auto and its Certbot installation will no longer receive updates. You will not receive any bug fixes including those fixing server compatibility or security problems. Please visit https://certbot.eff.org/ to check for other alternatives. Challenge failed for domain smtp.totallynot.science Attempting to renew cert (mail.indivia.net) from /etc/letsencrypt/renewal/mail.indivia.net.conf produced an unexpected error: Some challenges have fai led.. Skipping. Challenge failed for domain imap.totallynot.science Challenge failed for domain pop3.totallynot.science Attempting to renew cert (mbox.indivia.net) from /etc/letsencrypt/renewal/mbox.indivia.net.conf produced an unexpected error: Some challenges have fai led.. Skipping. All renewal attempts failed. The following certs could not be renewed: /etc/letsencrypt/live/mail.indivia.net/fullchain.pem (failure) /etc/letsencrypt/live/mbox.indivia.net/fullchain.pem (failure) 2 renew failure(s), 0 parse failure(s) INFO:root:Done renew ```
jigen kommentoitu 2 vuotta sitten
Omistaja

Il problema si puo' risolvere trovando il posto giusto in cui inserire l'opzione --allow-subset-of-names di renew

--allow-subset-of-names
When performing domain validation, do not consider it failure if
authorizations can not be obtained for a strict subset of the requested 
domains. This may be useful for allowing renewals for multiple domains 
to succeed even if some domains no longer point at this system
Il problema si puo' risolvere trovando il posto giusto in cui inserire l'opzione `--allow-subset-of-names` di renew ``` --allow-subset-of-names When performing domain validation, do not consider it failure if authorizations can not be obtained for a strict subset of the requested domains. This may be useful for allowing renewals for multiple domains to succeed even if some domains no longer point at this system ```
Kirjaudu sisään osallistuaksesi tähän keskusteluun.
Ei tunnistetta
Ei merkkipaalua
Ei osoitettua
1 osallistujaa
Ladataan...
Peruuta
Tallenna
Sisältöä ei vielä ole.