I’m having a problem renewing my Letsencrypt certificate.
I’m using NCP 1.20.1 NC 17.0.2 running on a Pi3, and I’ve moved the root folder to nextcloud (i.e. www.MYDOMAIN.no-ip.org/nextcloud).
I recently upgraded my home network which caused the internal IP address of the pi to change from 192.168.0.66 to 192.168.1.66, This is the first renewal since that change and I have checked that both port 80 and 443 are being redirected to the Pi
When I try to renew the certificate from the NCP web interface I get the following
[ letsencrypt ]
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for MYDOMAIN.no-ip.org
Using the webroot path /var/www/nextcloud for all unmatched domains.
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. MYDOMAIN.no-ip.org (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from https://MYDOMAIN.no-ip.org/.well-known/acme-challenge/0EFuCTdtzizZOXJtbIEIor2CzfjQBbnKKUPjpnruj8k [86.168.116.151]: "<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>404 Not Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p"
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: MYDOMAIN.no-ip.org
Type: unauthorized
Detail: Invalid response from
https://MYDOMAIN.no-ip.org/.well-known/acme-challenge/0EFuCTdtzizZOXJtbIEIor2CzfjQBbnKKUPjpnruj8k
[86.168.116.151]: "<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML
2.0//EN\">\n<html><head>\n<title>404 Not
Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p"
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
I have checked the forums for a solution and tried a suggestion of moving /etc/letsencrypt
sudo mv /etc/letsencrypt/ /etc/letsencrypt_old/
then regenerating the cert
sudo certbot --rsa-key-size 4096 --authenticator standalone --installer apache --pre-hook "apachectl -k stop" --post-hook "apachectl -k start"
But this gives the error
Saving debug log to /var/log/letsencrypt/letsencrypt.log
The requested apache plugin does not appear to be installed
Does anyone have any other suggestions as to how I can fix this?
Or what I missed in the suggested solution?