This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Let's Encrypt certificate renewal failed accessing Let's Encrypt service

Schon wieder funktioniert das Erneuern von Zertifikaten nicht

Das ist der Log:

Current firmware version: 9.703-3

2020:06:05-14:01:24 utm letsencrypt[26269]: I Renew certificate: sending notification WARN-603
2020:06:05-14:01:24 utm letsencrypt[26269]: [WARN-603] Let's Encrypt certificate renewal failed accessing Let's Encrypt service
2020:06:05-14:01:24 utm letsencrypt[26269]: I Renew certificate: execution completed (CSRs renewed: 0, failed: 1)
2020:06:05-14:12:03 utm letsencrypt[30415]: I Renew certificate: handling CSR REF_CaCsrMailflasch for domain set [mail.flaschenpost.de]
2020:06:05-14:12:03 utm letsencrypt[30415]: I Renew certificate: running command: /var/storage/chroot-reverseproxy/usr/dehydrated/bin/dehydrated -x -f /var/storage/chroot-reverseproxy/usr/dehydrated/conf/config -c --accept-terms --domain mail.flaschenpost.de
2020:06:05-14:12:23 utm letsencrypt[30415]: I Renew certificate: command completed with exit code 256
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: ERROR: Challenge is invalid! (returned: invalid) (result: {
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "type": "http-01",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "status": "invalid",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "error": {
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "type": "urn:ietf:params:acme:error:unauthorized",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "detail": "Invalid response from xxx.flaschenpost.xx:443/.../Hbh4ZeBtqLSxCWBKllZJMH7lZHSmBpXVyA8VyUVhF80 [2003:ca:c81a::155]: \"\u003c!DOCTYPE HTML PUBLIC \\\"-//IETF//DTD HTML 2.0//EN\\\"\u003e\\n\u003chtml\u003e\u003chead\u003e\\n\u003ctitle\u003e403 Forbidden\u003c/title\u003e\\n\u003c/head\u003e\u003cbody\u003e\\n\u003ch1\u003eForbidden\u003c/h1\u003e\\n\u003cp\"",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "status": 403
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: },
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "url": "acme-v02.api.letsencrypt.org/.../8Z__QQ",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "token": "Hbh4ZeBtqLSxCWBKllZJMH7lZHSmBpXVyA8VyUVhF80",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "validationRecord": [
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: {
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "url": "xxx.flaschenpost.xx/.../Hbh4ZeBtqLSxCWBKllZJMH7lZHSmBpXVyA8VyUVhF80",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "hostname": "xxx.flaschenpost.xx",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "port": "80",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "addressesResolved": [
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "80.155.xxx.xxx",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "2003:xx:xxx::155"
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: ],
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "addressUsed": "2003:xx:xxx::155"
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: },
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: {
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "url": "xxx.flaschenpost.xx:443/.../Hbh4ZeBtqLSxCWBKllZJMH7lZHSmBpXVyA8VyUVhF80",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "hostname": "xxx.flaschenpost.xx",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "port": "443",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "addressesResolved": [
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "80.155.xxx.xxx",
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "2003:xx:xxx::155"
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: ],
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: "addressUsed": "2003:xx:xxx::155"
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: }
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: ]
2020:06:05-14:12:23 utm letsencrypt[30415]: E Renew certificate: COMMAND_FAILED: })
2020:06:05-14:12:25 utm letsencrypt[30415]: I Renew certificate: sending notification WARN-603
2020:06:05-14:12:25 utm letsencrypt[30415]: [WARN-603] Let's Encrypt certificate renewal failed accessing Let's Encrypt service
2020:06:05-14:12:25 utm letsencrypt[30415]: I Renew certificate: execution completed (CSRs renewed: 0, failed: 1)

Wenn ich redirect von http -> https ausstelle, geht es.

VG Gunnar

This thread was automatically locked due to age.

0 dirkkotte over 4 years ago

Hallo,

das ist ein bekanntes Problem und der Workaround das redirect von http -> https abzuschalten.

Wir hoffen & warten auf einen Fix.

Dirk

Systema Gesellschaft für angewandte Datentechnik mbH // Sophos Platinum Partner
Sophos Solution Partner since 2003
If a post solves your question, click the 'Verify Answer' link at this post.
Cancel
Vote Up 0 Vote Down

Cancel