Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 1 reply
  • Subscribers 2 subscribers
  • Views 953 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Let's Encrypt certificate renewal failed accessing Let's Encrypt service

JensR

Hallo zusammen,

ich habe seit einigen Tagen das Problem, dass ich meine Let's Encrypt Zertifikate nicht erneuert bekomme. So langsam wird's knapp die Zertifikate laufen in 7 Tagen aus.

Das steht im Log

2021:12:18-00:38:03 srv-XXXXX-utm letsencrypt[10682]: E Renew certificate: Incorrect response code from ACME server: 500
2021:12:18-00:38:03 srv-XXXXX-utm letsencrypt[10682]: E Renew certificate: URL was: acme-v02.api.letsencrypt.org/directory
2021:12:18-00:38:03 srv-XXXXX-utm letsencrypt[10682]: I Renew certificate: handling CSR REF_CaCsrSslvpn for domain set [ssl-vpn.XXXX.de]
2021:12:18-00:38:03 srv-XXXXX-utm letsencrypt[10682]: E Renew certificate: TOS_UNAVAILABLE: Could not obtain the current version of the Let's Encrypt Terms of Service
2021:12:18-00:38:04 srv-XXXXX-utm letsencrypt[10682]: I Renew certificate: sending notification WARN-603
2021:12:18-00:38:04 srv-XXXXX-utm letsencrypt[10682]: [WARN-603] Let's Encrypt certificate renewal failed accessing Let's Encrypt service
2021:12:18-00:38:04 srv-XXXXX-utm letsencrypt[10682]: I Renew certificate: execution failed
2021:12:18-00:40:04 srv-XXXXX-utm letsencrypt[11424]: E Renew certificate: Incorrect response code from ACME server: 500
2021:12:18-00:40:04 srv-XXXXX-utm letsencrypt[11424]: E Renew certificate: URL was: acme-v02.api.letsencrypt.org/directory
2021:12:18-00:40:04 srv-XXXXX-utm letsencrypt[11424]: I Renew certificate: handling CSR REF_CaCsrSslvpn for domain set [ssl-vpn.XXXX.de]
2021:12:18-00:40:04 srv-XXXXX-utm letsencrypt[11424]: E Renew certificate: TOS_UNAVAILABLE: Could not obtain the current version of the Let's Encrypt Terms of Service
2021:12:18-00:40:04 srv-XXXXX-utm letsencrypt[11424]: I Renew certificate: sending notification WARN-603
2021:12:18-00:40:04 srv-XXXXX-utm letsencrypt[11424]: [WARN-603] Let's Encrypt certificate renewal failed accessing Let's Encrypt service
2021:12:18-00:40:04 srv-XXXXX-utm letsencrypt[11424]: I Renew certificate: execution failed
2021:12:18-00:43:03 srv-XXXXX-utm letsencrypt[12082]: E Renew certificate: Incorrect response code from ACME server: 500
2021:12:18-00:43:03 srv-XXXXX-utm letsencrypt[12082]: E Renew certificate: URL was: acme-v02.api.letsencrypt.org/directory
2021:12:18-00:43:03 srv-XXXXX-utm letsencrypt[12082]: I Renew certificate: handling CSR REF_CaCsrSslvpn for domain set [ssl-vpn.XXXX.de]
2021:12:18-00:43:03 srv-XXXXX-utm letsencrypt[12082]: E Renew certificate: TOS_UNAVAILABLE: Could not obtain the current version of the Let's Encrypt Terms of Service
2021:12:18-00:43:03 srv-XXXXX-utm letsencrypt[12082]: I Renew certificate: sending notification WARN-603
2021:12:18-00:43:03 srv-XXXXX-utm letsencrypt[12082]: [WARN-603] Let's Encrypt certificate renewal failed accessing Let's Encrypt service
2021:12:18-00:43:04 srv-XXXXX-utm letsencrypt[12082]: I Renew certificate: execution failed
2021:12:18-00:45:05 srv-XXXXX-utm letsencrypt[12833]: E Renew certificate: Incorrect response code from ACME server: 500
2021:12:18-00:45:05 srv-XXXXX-utm letsencrypt[12833]: E Renew certificate: URL was: acme-v02.api.letsencrypt.org/directory
2021:12:18-00:45:05 srv-XXXXX-utm letsencrypt[12833]: I Renew certificate: handling CSR REF_CaCsrSslvpn1812 for domain set [ssl-vpn.XXXX.de]
2021:12:18-00:45:05 srv-XXXXX-utm letsencrypt[12833]: E Renew certificate: TOS_UNAVAILABLE: Could not obtain the current version of the Let's Encrypt Terms of Service
2021:12:18-00:45:05 srv-XXXXX-utm letsencrypt[12833]: I Renew certificate: sending notification WARN-603
2021:12:18-00:45:05 srv-XXXXX-utm letsencrypt[12833]: [WARN-603] Let's Encrypt certificate renewal failed accessing Let's Encrypt service
2021:12:18-00:45:05 srv-XXXXX-utm letsencrypt[12833]: I Renew certificate: execution failed
2021:12:18-00:49:03 srv-XXXXX-utm letsencrypt[14070]: E Renew certificate: Incorrect response code from ACME server: 500
2021:12:18-00:49:03 srv-XXXXX-utm letsencrypt[14070]: E Renew certificate: URL was: acme-v02.api.letsencrypt.org/directory
2021:12:18-00:49:03 srv-XXXXX-utm letsencrypt[14070]: I Renew certificate: handling CSR REF_CaCsrSslvpn for domain set [ssl-vpn.XXXX.de]
2021:12:18-00:49:03 srv-XXXXX-utm letsencrypt[14070]: E Renew certificate: TOS_UNAVAILABLE: Could not obtain the current version of the Let's Encrypt Terms of Service
2021:12:18-00:49:04 srv-XXXXX-utm letsencrypt[14070]: I Renew certificate: sending notification WARN-603
2021:12:18-00:49:04 srv-XXXXX-utm letsencrypt[14070]: [WARN-603] Let's Encrypt certificate renewal failed accessing Let's Encrypt service
2021:12:18-00:49:04 srv-XXXXX-utm letsencrypt[14070]: I Renew certificate: execution failed

Gruß Jens



This thread was automatically locked due to age.
Parents
  • +1

    Ich habe die Lösung gefundenen, ich hatte in der Zertifikatsverwaltung noch das alte X1 Zertifikat als CA registriert. Nach dem löschen des alten CA Zertifikat mit dem Fingerprint 93:3C:6D:DE:E9:5C:9C:41:A4:0F:9F:50:49:3D:82:BE:03:AD:87:BF habe und durch das neue X1 mit dem Fingerprint CA:­BD:­2A:­79:­A1:­07:­6A:­31:­F2:­1D:­25:­36:­35:­CB:­03:­9D:­43:­29:­A5:­E8 als CA hochgeladen habe funktioniert es jetzt ohne Probleme.

     

Reply
  • +1

    Ich habe die Lösung gefundenen, ich hatte in der Zertifikatsverwaltung noch das alte X1 Zertifikat als CA registriert. Nach dem löschen des alten CA Zertifikat mit dem Fingerprint 93:3C:6D:DE:E9:5C:9C:41:A4:0F:9F:50:49:3D:82:BE:03:AD:87:BF habe und durch das neue X1 mit dem Fingerprint CA:­BD:­2A:­79:­A1:­07:­6A:­31:­F2:­1D:­25:­36:­35:­CB:­03:­9D:­43:­29:­A5:­E8 als CA hochgeladen habe funktioniert es jetzt ohne Probleme.

     

Children
No Data
Unfiltered HTML