wiki:certbot_troubleshooting
Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
wiki:certbot_troubleshooting [2021/02/25 15:06] – created antisa | wiki:certbot_troubleshooting [2024/06/12 08:29] (current) – [References] add https://letsencrypt.org/docs/ipv6-support/ antisa | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | {{tag> | + | {{tag> |
+ | |||
+ | ====== Letsencrypt certbot troubleshooting ====== | ||
+ | * certbot first establishes connection over ipv6. If you are getting timeout errors check firewall for ipv6 https access or set network stack to [[wiki: | ||
+ | |||
+ | * Make sure that you can access a file path under webserver root as certbot uses .well-acme folder inside it to fetch the token it uses to check the owner of domain/ | ||
+ | |||
+ | * If there is a previous redirect in webserver configuration it could also interfere with certificate generation | ||
+ | |||
+ | * Certbot only works on default ports, 80 and 443. Check if the Listen directive has a different port if you get " | ||
+ | |||
+ | * When using the [[https:// | ||
+ | |||
+ | when: sample_com_challenge is changed and ' | ||
+ | |||
+ | otherwise the step will fail with this error | ||
+ | < | ||
+ | TASK [letsencrypt : Implement http-01 challenge files] *********************************************************************************************************** | ||
+ | fatal: [1.1.1.1]: FAILED! => | ||
+ | msg: |- | ||
+ | The task includes an option with an undefined variable. The error was: 'dict object' | ||
+ | |||
+ | |||
+ | </ | ||
- | ====== certbot troubleshooting ====== | ||
===== Failed authorization procedure.... ===== | ===== Failed authorization procedure.... ===== | ||
Error: | Error: | ||
Line 9: | Line 31: | ||
RewriteCond %{REQUEST_URI} !^\.well-known/ | RewriteCond %{REQUEST_URI} !^\.well-known/ | ||
+ | |||
+ | ===== SEC_ERROR_UNKNOWN_ISSUER with certbot in Firefox ===== | ||
+ | If you get this weird error only on Firefox (89.0.2) and other browsers are ok, delete the existing certificate | ||
+ | |||
+ | certbot delete | ||
+ | |||
+ | and run again | ||
+ | certbot | ||
+ | |||
+ | This should resolve the issue. | ||
====== Tested on ====== | ====== Tested on ====== | ||
* Debian 10.8 | * Debian 10.8 | ||
- | * certbot 0.31 | + | * certbot 0.31.0 |
====== See also ====== | ====== See also ====== | ||
Line 19: | Line 51: | ||
* [[wiki: | * [[wiki: | ||
====== References ====== | ====== References ====== | ||
+ | * https:// | ||
+ | * https:// | ||
wiki/certbot_troubleshooting.1614265564.txt.gz · Last modified: 2021/02/25 15:06 by antisa