Hello,
I read this and i have the same problem with letsencrypt. The port 80 and 443 is ok.
Iām not very good in programming so i donāt understand what i need to do to resolve the problem.
My version of nextcloudpi is 1.11.2.
And i have the same result as Stereo :
ls /etc/letsencrypt/live :
WEB_ADDRESS WEB_ADDRESS-0001 README
I try sudo ncp-update devel and i obtain this when i launch letsencrypt :
[ letsencrypt ]
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Attempting to parse the version 0.33.1 renewal configuration file found at /etc/letsencrypt/renewal/WEB_ADDRESS-0001.conf with version 0.28.0 of Certbot. This might not work.
Cert not yet due for renewal
Keeping the existing certificate
Certificate not yet due for renewal; no action taken.
System config value trusted_domains => 4 set to string WEB_ADDRESS-0001
System config value overwrite.cli.url set to string https://WEB_ADDRESS-0001/
Edit : And now this :
Unauthorized request. Try reloading the page
Thanks
thanks! seems like it worked, but you are in the ā0001 situationā, try this in the terminal
cd /etc/letsencrypt/
sudo mv archive archive_old
sudo mv renewal renewal_old
sudo mv live live_old
then use ncp-config to get a new certificate
1 Like
Thanks for the quick answer !
I have this result :
[ letsencrypt ]
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for WEB_ADDRESS
Using the webroot path /var/www/nextcloud for all unmatched domains.
Waiting for verificationā¦
Cleaning up challenges
An unexpected error occurred:
There were too many requests of a given type :: Error finalizing order :: too many certificates already issued for exact set of domains: WEB_ADDRESS: see https://letsencrypt.org/docs/rate-limits/
Please see the logfiles in /var/log/letsencrypt for more details.
I donāt think it worksā¦
Edit : the server donāt works after reboot
it looks like it workedā¦ but you hit the rate limit
you shouldnāt have rebooted , itās ok, weāll help you
In order to bring NC back you have to change the following lines in /etc/apache2/sites-available/ files nextcloud.conf and ncp.conf
SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem
SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key
, then reboot.
NC should work now, but you will get a certificate warning. You need LE to fix that.
At this point you can try
sudo letsencrypt certonly --force-renew -n --no-self-upgrade --webroot -w /var/www/nextcloud --hsts --agree-tos -m $EMAIL -d $DOMAIN
Substitute $EMAIL
with your email, $DOMAIN
with your domain
if that works, run it again from ncp-web
I change this :
SSLCertificateFile /etc/letsencrypt/live/WEB_ADDRESS/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/WEB_ADDRESS/privkey.pem
by
SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem
SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key ?
Edit :
I donāt change SSL Certificate so i go back to the previous step and do it again with reboot :
cd /etc/letsencrypt/
sudo mv archive archive_old
sudo mv renewal renewal_old
sudo mv live live_old
then i do :
sudo letsencrypt certonly --force-renew -n --no-self-upgrade --webroot -w /var/www/nextcloud --hsts --agree-tos -m $EMAIL -d $DOMAIN
I thinks itās work but i have to wait :
[ letsencrypt ]
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for WEB_ADDRESS
Using the webroot path /var/www/nextcloud for all unmatched domains.
Waiting for verificationā¦
Cleaning up challenges
An unexpected error occurred:
There were too many requests of a given type :: Error finalizing order :: too many certificates already issued for exact set of domains:
Thanks
OK, I did the sudo ncp-update devel
thing and itās still running - ready now, Iāve got v1.11.4
Iām already beyond the ā0001 situationā, Iām in level 0002.
After the update I did the 3 sudo mv
things and then I ran letsencrypt via ncp-config - it gave me a new certificate.
And then: no reboot, nc is still accessible, no error-messages.
What means this for further working with nc: do I have a development-version now? Will I update from the development channel?
Anyway: Thank you very much!
Yours
SMichel
2 Likes
Great, thanks
You donāt have to do anything special, just keep updating as usual
1 Like