Hello, i have a problem with my NextcloudPi instance.
My letsencrypt certificate is expired (as shown by my webbrowser) and is not automatically renewed.
I tried to use ncp-config to get manually a new certificate but the output is
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Cert not yet due for renewal
Keeping the existing certificate
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Certificate not yet due for renewal; no action taken.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
System config value trusted_domains => 4 set to string MY_WEBADRESS_XXXXXX
System config value overwrite.cli.url set to string https://MY_WEBADRESS_XXXXXX
The output of /var/log/letsencrypt/letsencrypt.log is:
2019-03-21 20:23:54,678:DEBUG:certbot.main:certbot version: 0.32.0
2019-03-21 20:23:54,679:DEBUG:certbot.main:Arguments: ['-n', '--no-self-upgrade', '--webroot', '-w', '/var/www/nextcloud', '--hsts', '--agree-tos', '-m', 'MY_EMAIL_XXXXXXX', '-d', 'MY_WEBADRESS_XXXXXX']
2019-03-21 20:23:54,679:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2019-03-21 20:23:54,741:DEBUG:certbot.log:Root logging level set at 20
2019-03-21 20:23:54,743:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2019-03-21 20:23:54,744:DEBUG:certbot.plugins.selection:Requested authenticator webroot and installer None
2019-03-21 20:23:54,760:DEBUG:certbot.plugins.selection:Single candidate plugin: * webroot
Description: Place files in webroot directory
Interfaces: IAuthenticator, IPlugin
Entry point: webroot = certbot.plugins.webroot:Authenticator
Initialized: <certbot.plugins.webroot.Authenticator object at 0xb5b5db30>
Prep: True
2019-03-21 20:23:54,762:DEBUG:certbot.plugins.selection:Selected authenticator <certbot.plugins.webroot.Authenticator object at 0xb5b5db30> and installer None
2019-03-21 20:23:54,762:INFO:certbot.plugins.selection:Plugins selected: Authenticator webroot, Installer None
2019-03-21 20:23:54,772:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, terms_of_service_agreed=None, agreement=None, only_return_existing=None, contact=(), key=None, external_account_binding=None), uri=u'https://acme-v02.api.letsencrypt.org/acme/acct/52792675', new_authzr_uri=None, terms_of_service=None), fd6b2d2242fc0118cd16be53307c8686, Meta(creation_host=u'nextcloudpi', creation_dt=datetime.datetime(2019, 3, 6, 19, 59, 57, tzinfo=<UTC>)))>
2019-03-21 20:23:54,775:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2019-03-21 20:23:54,779:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2019-03-21 20:23:55,570:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
2019-03-21 20:23:55,572:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Content-Type: application/json
Content-Length: 658
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Thu, 21 Mar 2019 20:23:55 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 21 Mar 2019 20:23:55 GMT
Connection: keep-alive
{
"aM8P1gz_H18": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
"website": "https://letsencrypt.org"
},
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2019-03-21 20:23:55,577:DEBUG:certbot.cert_manager:Renewal conf file /etc/letsencrypt/renewal/WEBADDRESS_XXXXXXXXXXXX is broken. Skipping.
2019-03-21 20:23:55,578:DEBUG:certbot.cert_manager:Traceback was:
Traceback (most recent call last):
File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/cert_manager.py", line 383, in _search_lineages
candidate_lineage = storage.RenewableCert(renewal_file, cli_config)
File "/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/storage.py", line 444, in __init__
"file reference".format(self.configfile))
CertStorageError: renewal config file {} is missing a required file reference
2019-03-21 20:23:55,592:INFO:certbot.renewal:Cert not yet due for renewal
2019-03-21 20:23:55,592:INFO:certbot.main:Keeping the existing certificate
nc-info gives me
Running nc-info
Gathering information...
NextCloudPi version v1.10.4
NextCloudPi image NextCloudPi_09-29-18
distribution Debian GNU/Linux 9 \n \l
automount yes
USB devices sda
datadir /media/myCloudDrive/ncdata
data in SD no
data filesystem btrfs
data disk usage 195G/1.9T
rootfs usage 5.1G/29G
swapfile /var/swap
dbdir /var/lib/mysql
Nextcloud check ok
Nextcloud version 15.0.5.3
HTTPD service up
PHP service up
MariaDB service up
Redis service up
Postfix service up
internet check ok
port check 80 open
port check 443 open
IP 192.168.178.46
gateway 192.168.178.1
interface XXXXXXXXXXX
certificates MY_WEBADDRESS_XXXXX
NAT loopback no
uptime 1day
Any ideas?