I wouldnt delete anything, just move/rename the directories.
I dont really know if there are other folders/files that need to be moved/renamed.
It seems there are also files in:
/etc/letsencrypt/renewal/sub.domain.tld
Ok, i donât know what i did wrong last time but things seem to work for me again.
What i did:
-
update ncp to v1.10.9 - not sure if this update is related to our problem
-
cd /etc/letsencrypt/
-
mv archive archive_old
mv renewal renewal_old
mv live live_old -
then use ncp-config to get new certificates.
2 Likes
I did the same with the following success:
And the web panel (:4443) isnât accessible any more.
Yours
SMichel
Hi,
I have the same problem with my NextcloudPi instance.
The letsencrypt certificate is expired and is not automatically renewed and when I try to manually obtain a new certificate I get this message: âCertificate not yet due for renewal; no action taken.â
Any ideas how to solve this? Thank you in advance!!
This solution worked for me:
Tried it out and thatâs the result:
Sounds better than everything bevore!
Thunderbird doesnât still sync the calendars and the adressbooks and gives an error message because of a not valid certificate. It still says that the certificate expired at 2nd of march.
Canât oben nextcloud in the browser.
Yours
SMichel
That did the trick for me. Thank you so much!!
Without having looked into the logs, so far I can tell that I had the same problem. Cert was expired (according to Chrome) but renewal attempts would tell me ârenewal not dueâ. Then in /etc/letsencrypt/live there were 2 subfolders: [domain] and [domain]-0001.
Not sure though what could have triggered this behaviour. I didnât restore a backup or something. But Iâm also not a too experienced user. Maybe I did something stupid at some point âŠ
And now?
Thereâs a ncp update - did it and rebooted the whole scrap.
Nothing better.
Wanna scrub it.
Yours
SMichel
Tried the ./certbot-auto thing again and now Iâve got this to show you:
pi@xxx:~ $ sudo -i
root@xxx:~# cd /etc/letsencrypt
root@xxx:/etc/letsencrypt# ./certbot-auto
Upgrading certbot-auto 0.32.0 to 0.33.1...
Replacing certbot-auto...
Creating virtual environment...
Installing Python packages...
Had a problem while installing Python packages.
pip prints the following errors:
=====================================================
Collecting ConfigArgParse==0.14.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (lin e 7))
Downloading https://files.pythonhosted.org/packages/55/ea/f0ade52790bcd687127a302b26c1663bf2e0f2321 0d5281dbfcd1dfcda28/ConfigArgParse-0.14.0.tar.gz
Collecting asn1crypto==0.24.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 9) )
Downloading https://files.pythonhosted.org/packages/ea/cd/35485615f45f30a510576f1a56d1e0a7ad7bd8ab5 ed7cdc600ef7cd06222/asn1crypto-0.24.0-py2.py3-none-any.whl (101kB)
Collecting certifi==2019.3.9 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 12) )
Downloading https://files.pythonhosted.org/packages/60/75/f692a584e85b7eaba0e03827b3d51f45f571c2e79 3dd731e598828d380aa/certifi-2019.3.9-py2.py3-none-any.whl (158kB)
Collecting cffi==1.12.2 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 15))
Downloading https://files.pythonhosted.org/packages/64/7c/27367b38e6cc3e1f49f193deb761fe75cda9f95da 37b67b422e62281fcac/cffi-1.12.2.tar.gz (453kB)
Collecting chardet==3.0.4 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 44))
Downloading https://files.pythonhosted.org/packages/bc/a9/01ffebfb562e4274b6487b4bb1ddec7ca55ec7510 b22e4c51f14098443b8/chardet-3.0.4-py2.py3-none-any.whl (133kB)
Collecting configobj==5.0.6 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 47))
Downloading https://files.pythonhosted.org/packages/64/61/079eb60459c44929e684fa7d9e2fdca403f67d64d d9dbac27296be2e0fab/configobj-5.0.6.tar.gz
Collecting cryptography==2.6.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 4 9))
Downloading https://files.pythonhosted.org/packages/07/ca/bc827c5e55918ad223d59d299fff92f3563476c3b 00d0a9157d9c0217449/cryptography-2.6.1.tar.gz (491kB)
Collecting enum34==1.1.6 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 71))
Downloading https://files.pythonhosted.org/packages/c5/db/e56e6b4bbac7c4a06de1c50de6fe1ef3810018ae1 1732a50f15f62c7d050/enum34-1.1.6-py2-none-any.whl
Collecting funcsigs==1.0.2 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 76))
Downloading https://files.pythonhosted.org/packages/69/cb/f5be453359271714c01b9bd06126eaf2e368f1fdd fff30818754b5ac2328/funcsigs-1.0.2-py2.py3-none-any.whl
Collecting future==0.17.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 79))
Downloading https://files.pythonhosted.org/packages/90/52/e20466b85000a181e1e144fd8305caf2cf475e2f9 674e797b222f8105f5f/future-0.17.1.tar.gz (829kB)
Collecting idna==2.8 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 81))
Downloading https://files.pythonhosted.org/packages/14/2c/cd551d81dbe15200be1cf41cd03869a46fe7226e7 450af7a6545bfc474c9/idna-2.8-py2.py3-none-any.whl (58kB)
Collecting ipaddress==1.0.22 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 84) )
Downloading https://files.pythonhosted.org/packages/fc/d0/7fc3a811e011d4b388be48a0e381db8d990042df5 4aa4ef4599a31d39853/ipaddress-1.0.22-py2.py3-none-any.whl
Collecting josepy==1.1.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 87))
Downloading https://files.pythonhosted.org/packages/23/46/30ac29742b03be92e05d1fd9048df6f0902bb0b3b 042a7ea76a2b3c30f7e/josepy-1.1.0-py2.py3-none-any.whl (53kB)
Collecting mock==1.3.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 90))
Downloading https://files.pythonhosted.org/packages/b2/50/664a70b87408bb6c14c1af2337efa64eb8d1af80c 933531758b8fb41ec25/mock-1.3.0-py2.py3-none-any.whl (56kB)
Collecting parsedatetime==2.4 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 93 ))
Downloading https://files.pythonhosted.org/packages/1d/48/ac8d4c6239437592852e951bcb9438dc585f80c29 777c391aef69c67dc79/parsedatetime-2.4-py2-none-any.whl (40kB)
Collecting pbr==5.1.3 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 96))
Downloading https://files.pythonhosted.org/packages/14/09/12fe9a14237a6b7e0ba3a8d6fcf254bf4b10ec56a 0185f73d651145e9222/pbr-5.1.3-py2.py3-none-any.whl (107kB)
Collecting pyOpenSSL==19.0.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 99) )
Downloading https://files.pythonhosted.org/packages/01/c8/ceb170d81bd3941cbeb9940fc6cc2ef2ca4288d0c a8929ea4db5905d904d/pyOpenSSL-19.0.0-py2.py3-none-any.whl (53kB)
Collecting pyRFC3339==1.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 102))
Downloading https://files.pythonhosted.org/packages/c1/7a/725f5c16756ec6211b1e7eeac09f4690845955139 17ea069bc023c40a5e2/pyRFC3339-1.1-py2.py3-none-any.whl
Collecting pycparser==2.19 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 105))
Downloading https://www.piwheels.org/simple/pycparser/pycparser-2.19-py2.py3-none-any.whl (111kB)
Collecting pyparsing==2.3.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 107) )
Downloading https://files.pythonhosted.org/packages/de/0a/001be530836743d8be6c2d85069f46fecf84ac6c1 8c7f5fb8125ee11d854/pyparsing-2.3.1-py2.py3-none-any.whl (61kB)
Collecting python-augeas==0.5.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 110))
Downloading https://files.pythonhosted.org/packages/41/e6/4b6740cb3e31b82252099994cea751c648b846aa7 874343c31d68c2215be/python-augeas-0.5.0.tar.gz (90kB)
Collecting pytz==2018.9 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 112))
Downloading https://files.pythonhosted.org/packages/61/28/1d3920e4d1d50b19bc5d24398a7cd85cc7b9a75a4 90570d5a30c57622d34/pytz-2018.9-py2.py3-none-any.whl (510kB)
Collecting requests==2.21.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 115) )
Downloading https://files.pythonhosted.org/packages/7d/e3/20f3d364d6c8e5d2353c72a67778eb189176f08e8 73c9900e10c0287b84b/requests-2.21.0-py2.py3-none-any.whl (57kB)
Collecting requests-toolbelt==0.9.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (l ine 118))
Downloading https://files.pythonhosted.org/packages/60/ef/7681134338fc097acef8d9b2f8abe0458e4d87559 c689a8c306d0957ece5/requests_toolbelt-0.9.1-py2.py3-none-any.whl (54kB)
Collecting six==1.12.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 121))
Downloading https://files.pythonhosted.org/packages/73/fb/00a976f728d0d1fecfe898238ce23f502a721c0ac 0ecfedb80e0d88c64e9/six-1.12.0-py2.py3-none-any.whl
Collecting urllib3==1.24.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 124))
Downloading https://files.pythonhosted.org/packages/62/00/ee1d7de624db8ba7090d1226aebefab96a2c71cd5 cfa7629d6ad3f61b79e/urllib3-1.24.1-py2.py3-none-any.whl (118kB)
Collecting zope.component==4.5 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 1 27))
Downloading https://files.pythonhosted.org/packages/97/e2/c785df1171f277ea93cc16bdcc112cb3ddfde1aee fbc401d46c49727f472/zope.component-4.5-py2.py3-none-any.whl (70kB)
Collecting zope.deferredimport==4.3 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (l ine 130))
Downloading https://files.pythonhosted.org/packages/62/d2/e03e4b0c9103817e19d1ea577c1f7fb9b67e4c039 7ca5127d377e1eafe0c/zope.deferredimport-4.3-py2.py3-none-any.whl
Collecting zope.deprecation==4.4.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (li ne 133))
Downloading https://files.pythonhosted.org/packages/f9/26/b935bbf9d27e898b87d80e7873a0200cebf239253 d0afe7a59f82fe90fff/zope.deprecation-4.4.0-py2.py3-none-any.whl
Collecting zope.event==4.4 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 136))
Downloading https://files.pythonhosted.org/packages/c5/96/361edb421a077a4c208b4a5c212737d78ae03ce67 fbbcd01621c49f332d1/zope.event-4.4-py2.py3-none-any.whl
Collecting zope.hookable==4.2.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 139))
Downloading https://files.pythonhosted.org/packages/41/b5/378175b959565de41f45c775cdfbf8897aaeaf29a 258b94e40bd2661ce46/zope.hookable-4.2.0.tar.gz
Collecting zope.interface==4.6.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 150))
Downloading https://files.pythonhosted.org/packages/4e/d0/c9d16bd5b38de44a20c6dc5d5ed80a49626fafcb3 db9f9efdc2a19026db6/zope.interface-4.6.0.tar.gz (150kB)
Collecting zope.proxy==4.3.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 180 ))
Downloading https://files.pythonhosted.org/packages/7c/f5/e9ed65cdf8c93d24d7512ef89e21b241bc9ae75d9 0bc8608cc142f4c26f9/zope.proxy-4.3.1.tar.gz (43kB)
Collecting letsencrypt==0.7.0 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 20 0))
Downloading https://files.pythonhosted.org/packages/fd/21/0c6f33829fadec8aca0c1ebb4d6f8101c05899356 a58d1b2e506cb77cf18/letsencrypt-0.7.0-py2-none-any.whl
Collecting certbot==0.33.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 204))
Downloading https://files.pythonhosted.org/packages/a3/d5/3448147adb35a0dfb09d03ebf71bce38db9ce3614 e2ba82e0107067876d8/certbot-0.33.1-py2.py3-none-any.whl (324kB)
Collecting acme==0.33.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 207))
Downloading https://files.pythonhosted.org/packages/14/35/bb580ff724f0d6f1b05a682c5d6fc61b44ce28369 cd43e74e33ab5f53140/acme-0.33.1-py2.py3-none-any.whl (86kB)
Collecting certbot-apache==0.33.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (lin e 210))
Downloading https://files.pythonhosted.org/packages/c7/b2/3c43e9bc3d171e5adf791d3157722551cdbe1e4cd 5db7d62cffd922cc297/certbot_apache-0.33.1-py2.py3-none-any.whl (249kB)
Collecting certbot-nginx==0.33.1 (from -r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 213))
Downloading https://files.pythonhosted.org/packages/6f/4a/5f8d4c6d36db2281c38f7aa6e0c4c4693329afb58 fc661ae6c6e7195ace5/certbot_nginx-0.33.1-py2.py3-none-any.whl (86kB)
Requirement already satisfied: setuptools>=1.0 in /opt/eff.org/certbot/venv/lib/python2.7/site-packag es (from josepy==1.1.0->-r /tmp/tmp.IL9NjmWv4E/letsencrypt-auto-requirements.txt (line 87))
THESE PACKAGES DO NOT MATCH THE HASHES FROM THE REQUIREMENTS FILE. If you have updated the package ve rsions, please update the hashes. Otherwise, examine the package contents carefully; someone may have tampered with them.
pycparser==2.19 from https://www.piwheels.org/simple/pycparser/pycparser-2.19-py2.py3-none-any.wh l#sha256=344870c533812cb119c5475b5aed033ec546118711338ff9b2b78e67098d64e7 (from -r /tmp/tmp.IL9NjmWv4 E/letsencrypt-auto-requirements.txt (line 105)):
Expected sha256 a988718abfad80b6b157acce7bf130a30876d27603738ac39f140993246b25b3
Got 344870c533812cb119c5475b5aed033ec546118711338ff9b2b78e67098d64e7
=====================================================
Certbot has problem setting up the virtual environment.
We were not be able to guess the right solution from your pip
output.
Consult https://certbot.eff.org/docs/install.html#problems-with-python-virtual-environment
for possible solutions.
You may also find some support resources at https://certbot.eff.org/support/ .
root@xxx:/etc/letsencrypt#
Yours
SMichel
Another ncp-update was provided, but there are 5 packages that where not updated.
root@nextcloudpi:~# ncp-update
Downloading updates
Performing updates
Running nc-autoupdate-nc
automatic Nextcloud updates enabled
Config value squareSizes for app previewgenerator set to 32
Config value widthSizes for app previewgenerator set to 128 256 512
Config value heightSizes for app previewgenerator set to 128 256
System config value jpeg_quality set to string 60
Running unattended-upgrades
Unattended upgrades active: yes (autoreboot true)
--2019-04-06 08:43:30-- https://packages.sury.org/php/apt.gpg
Auflösen des Hostnamens »packages.sury.org (packages.sury.org)« ⊠185.172.151.128, 2a0b:4d07:401::1
Verbindungsaufbau zu packages.sury.org (packages.sury.org)|185.172.151.128|:443 ⊠verbunden.
HTTP-Anforderung gesendet, auf Antwort wird gewartet ⊠200 OK
LĂ€nge: 1769 (1,7K) [application/octet-stream]
Wird in »»/etc/apt/trusted.gpg.d/php.gpg«« gespeichert.
/etc/apt/trusted.gpg.d/ 100%[============================>] 1,73K --.-KB/s in 0s
2019-04-06 08:43:30 (16,4 MB/s) - »»/etc/apt/trusted.gpg.d/php.gpg«« gespeichert [1769/1769]
Running nc-backup-auto
automatic backups enabled
Running nc-autoupdate-ncp
automatic NextCloudPi updates enabled
Running nc-notify-updates
update web notifications enabled
Running nc-update-nc-apps-auto
automatic app updates enabled
Installing nc-backup
OK:1 http://raspbian.raspberrypi.org/raspbian stretch InRelease
OK:2 http://archive.raspberrypi.org/debian stretch InRelease
OK:3 https://packages.sury.org/php stretch InRelease
Paketlisten werden gelesen... Fertig
Paketlisten werden gelesen... Fertig
AbhÀngigkeitsbaum wird aufgebaut.
Statusinformationen werden eingelesen.... Fertig
pigz ist schon die neueste Version (2.3.4-1).
0 aktualisiert, 0 neu installiert, 0 zu entfernen und 5 nicht aktualisiert.
NextCloudPi updated to version v1.11.1
After this update ./certbot-auto brings the same result as shown above.
Yours
SMichel
9th april
Dear diary!
https://www.ssllabs.com/ssltest/ says that my certificate meanwhile is expired for over a month. That means that my nextcloud inkluding the adressbooks and all calendars are completly useless since then.
Getting messages like ânextcloud has 10 new notifications for youâ - donât now what notifications, canât log in.
Thunderbird gives errors every 5 minutes, canât sync the calendars, which are completely outdated in the meanwhile.
Bought a book calendar, copied all events by hand.
Wonder if itâs worth to give nextcloud another chance and try a complete new setup⊠Donât think so 'cause anyway I have the chance to face the same problem againâŠ
Yours
SMichel
Only 3 answers in a row are possible.
Have to wait for an answer of someone else.
OK.
Yours
SMichel
My log files are constantly flooded with entries like that:
2019-04-21 06:47:06,086:DEBUG:certbot.main:certbot version: 0.33.1
2019-04-21 06:47:06,088:DEBUG:certbot.main:Arguments: [ââquietâ]
2019-04-21 06:47:06,088:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx$
2019-04-21 06:47:06,153:DEBUG:certbot.log:Root logging level set at 30
2019-04-21 06:47:06,155:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2019-04-21 06:47:06,279:DEBUG:certbot.plugins.selection:Requested authenticator <certbot.cli._Default object at 0xb6784bf0> and installer <certbot.cl$
2019-04-21 06:47:06,389:INFO:certbot.renewal:Cert not yet due for renewal
2019-04-21 06:47:06,391:DEBUG:certbot.plugins.selection:Requested authenticator webroot and installer None
2019-04-21 06:47:06,394:WARNING:certbot.renewal:
Traceback (most recent call last):
File â/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/renewal.pyâ, line 65, in _reconstitute
renewal_candidate = storage.RenewableCert(full_path, config)
File â/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/storage.pyâ, line 462, in init
self._check_symlinks()
File â/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/storage.pyâ, line 521, in _check_symlinks
âexpected {0} to be a symlinkâ.format(link))
CertStorageError: expected /etc/letsencrypt/live/cloud.keuchen.net/cert.pem to be a symlink
2019-04-21 06:47:06,401:WARNING:certbot.renewal:Renewal configuration file /etc/letsencrypt/renewal/cloud.XXXXXXX.net.conf is broken. Skipping.
2019-04-21 06:47:06,401:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File â/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/renewal.pyâ, line 65, in _reconstitute
renewal_candidate = storage.RenewableCert(full_path, config)
File â/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/storage.pyâ, line 462, in init
self._check_symlinks()
File â/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/storage.pyâ, line 521, in _check_symlinks
âexpected {0} to be a symlinkâ.format(link))
CertStorageError: expected /etc/letsencrypt/live/cloud.XXXXXX.net/cert.pem to be a symlink2019-04-21 06:47:06,402:DEBUG:certbot.log:Exiting abnormally:
Traceback (most recent call last):
File â/opt/eff.org/certbot/venv/bin/letsencryptâ, line 11, in
sys.exit(main())
File â/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/main.pyâ, line 1364, in main
return config.func(config, plugins)
File â/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/main.pyâ, line 1271, in renew
renewal.handle_renewal_request(config)
File â/opt/eff.org/certbot/venv/local/lib/python2.7/site-packages/certbot/renewal.pyâ, line 475, in handle_renewal_request
len(renew_failures), len(parse_failures)))
Error: 0 renew failure(s), 1 parse failure(s)
This also worked for me, except I did not update ncp (was already v1.11.2), and after using ncp-config, did a sudo reboot - then all my NC instances were accessible again!
Ok, I just pushed a fix for this, please help me test it by running sudo ncp-update devel before I release it to everyone
Hello,
I read this and i have the same problem with letsencrypt. The port 80 and 443 is ok.
Iâm not very good in programming so i donât understand what i need to do to resolve the problem.
My version of nextcloudpi is 1.11.2.
And i have the same result as Stereo :
ls /etc/letsencrypt/live :
WEB_ADDRESS WEB_ADDRESS-0001 README
I try sudo ncp-update devel and i obtain this when i launch letsencrypt :
[ letsencrypt ]
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Attempting to parse the version 0.33.1 renewal configuration file found at /etc/letsencrypt/renewal/WEB_ADDRESS-0001.conf with version 0.28.0 of Certbot. This might not work.
Cert not yet due for renewal
Keeping the existing certificate
Certificate not yet due for renewal; no action taken.
System config value trusted_domains => 4 set to string WEB_ADDRESS-0001
System config value overwrite.cli.url set to string https://WEB_ADDRESS-0001/
Edit : And now this :
Unauthorized request. Try reloading the page
Thanks
thanks! seems like it worked, but you are in the â0001 situationâ, try this in the terminal
cd /etc/letsencrypt/
sudo mv archive archive_old
sudo mv renewal renewal_old
sudo mv live live_old
then use ncp-config to get a new certificate
1 Like
Thanks for the quick answer !
I have this result :
[ letsencrypt ]
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for WEB_ADDRESS
Using the webroot path /var/www/nextcloud for all unmatched domains.
Waiting for verificationâŠ
Cleaning up challenges
An unexpected error occurred:
There were too many requests of a given type :: Error finalizing order :: too many certificates already issued for exact set of domains: WEB_ADDRESS: see https://letsencrypt.org/docs/rate-limits/
Please see the logfiles in /var/log/letsencrypt for more details.
I donât think it worksâŠ
Edit : the server donât works after reboot 
it looks like it worked⊠but you hit the rate limit 
you shouldnât have rebooted , itâs ok, weâll help you
In order to bring NC back you have to change the following lines in /etc/apache2/sites-available/ files nextcloud.conf and ncp.conf
SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem
SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key
, then reboot.
NC should work now, but you will get a certificate warning. You need LE to fix that.
At this point you can try
sudo letsencrypt certonly --force-renew -n --no-self-upgrade --webroot -w /var/www/nextcloud --hsts --agree-tos -m $EMAIL -d $DOMAIN
Substitute $EMAIL with your email, $DOMAIN with your domain
if that works, run it again from ncp-web
I change this :
SSLCertificateFile /etc/letsencrypt/live/WEB_ADDRESS/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/WEB_ADDRESS/privkey.pem
by
SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem
SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key ?
Edit :
I donât change SSL Certificate so i go back to the previous step and do it again with reboot :
cd /etc/letsencrypt/
sudo mv archive archive_old
sudo mv renewal renewal_old
sudo mv live live_old
then i do :
sudo letsencrypt certonly --force-renew -n --no-self-upgrade --webroot -w /var/www/nextcloud --hsts --agree-tos -m $EMAIL -d $DOMAIN
I thinks itâs work but i have to wait :
[ letsencrypt ]
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for WEB_ADDRESS
Using the webroot path /var/www/nextcloud for all unmatched domains.
Waiting for verificationâŠ
Cleaning up challenges
An unexpected error occurred:
There were too many requests of a given type :: Error finalizing order :: too many certificates already issued for exact set of domains:
Thanks
OK, I did the sudo ncp-update devel thing and itâs still running - ready now, Iâve got v1.11.4
Iâm already beyond the â0001 situationâ, Iâm in level 0002.
After the update I did the 3 sudo mv things and then I ran letsencrypt via ncp-config - it gave me a new certificate.
And then: no reboot, nc is still accessible, no error-messages.
What means this for further working with nc: do I have a development-version now? Will I update from the development channel?
Anyway: Thank you very much!
Yours
SMichel
2 Likes