How to renew the SSL certificate if its not yet due for renewal


I’m running Nextcloud on a Raspberry Pi (Nextcloudpi).

Since I have change my router, the SSL certificate seems to be invalid.
When I’m trying to open Nextcloud with Firefox I get the error “MOZILLA_PKIX_ERROR_SELF_SIGNED_CERT”.

I have tried to update the SSL certificate but because it is not due for renewal, I get the message:
Running letsencrypt
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Cert not yet due for renewal
Keeping the existing certificate
Certificate not yet due for renewal; no action taken.

I would like to force a renewal of the certificate or delet the existing certificate to be able to obtain a new certificate.
How can I get a new ssl certificate?

You should check NAT port forwarding in your new router.

It looks like your new router is the reason for the Firefox error. It is not forwarding correctly. And most routers use self signed certificates.

Your Letsencrypt certificate is fine, no need to renew it.

1 Like

Hi OliverV,

thank you for the hint.
I have tried to configure the port mapping, but I wasn’t able to solve the problem.

Can you tell me how I have to configure the port mapping?

Protocol: TCP or UDP?
Public port(s):?
Local port(s): ?

Did you try the ncp networking tool ?

NC basically requires Public=>Local TCP ports 80 and 443

Hi OliverV,

thank you very much for your held. My NextcloudPi is running again!