Let's EncryptのSSL証明書の更新をしようと思っています。
環境
nginx
Let's Encrypt
今まで、1つのサーバーに2つのドメインを設定し、更新をしていたのですが、もう一つのドメインを他のサーバーへ移転したたため、一つのドメインのみのSSLを更新したいと思っています。
bash
1/usr/bin/certbot-auto renew --standalone --pre-hook 'systemctl stop nginx' --post-hook 'systemctl start nginx' --force-renew
のコマンドを打つと下記のようなエラーが出されSSLの更新ができません。
下記のようなエラーが表示されます。
bash
1[root@tk2-226-22988 bin]# /usr/bin/certbot-auto renew --standalone --pre-hook 'systemctl stop nginx' --post-hook 'systemctl start nginx' --force-renew 2Upgrading certbot-auto 0.23.0 to 0.24.0... 3Replacing certbot-auto... 4Creating virtual environment... 5Installing Python packages... 6Installation succeeded. 7Saving debug log to /var/log/letsencrypt/letsencrypt.log 8 9------------------------------------------------------------------------------- 10Processing /etc/letsencrypt/renewal/hoge.mobi.conf 11------------------------------------------------------------------------------- 12Plugins selected: Authenticator standalone, Installer None 13Running pre-hook command: systemctl stop nginx 14Renewing an existing certificate 15Performing the following challenges: 16tls-sni-01 challenge for hoge.mobi 17http-01 challenge for .space 18Waiting for verification... 19Cleaning up challenges 20Attempting to renew cert (hoge.mobi) from /etc/letsencrypt/renewal/hoge.mobi.conf produced an unexpected error: Failed authorization procedure. fuga.space (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://fuga.space/.well-known/acme-challenge/R0cYYo2wllYDZs1UdARM8Wws2fNpGW5NW9Sghc7yOw0: "<html> 21<head><title>404 Not Found</title></head> 22<body bgcolor="white"> 23<center><h1>404 Not Found</h1></center> 24<hr><center>". Skipping. 25 26------------------------------------------------------------------------------- 27Processing /etc/letsencrypt/renewal/hoge.mobi-0001.conf 28------------------------------------------------------------------------------- 29Plugins selected: Authenticator standalone, Installer None 30Pre-hook command already run, skipping: systemctl stop nginx 31Renewing an existing certificate 32Performing the following challenges: 33tls-sni-01 challenge for hoge.mobi 34Waiting for verification... 35Cleaning up challenges 36 37------------------------------------------------------------------------------- 38new certificate deployed without reload, fullchain is 39/etc/letsencrypt/live/hoge.mobi-0001/fullchain.pem 40------------------------------------------------------------------------------- 41The following certs could not be renewed: 42 /etc/letsencrypt/live/hoge.mobi/fullchain.pem (failure) 43 44------------------------------------------------------------------------------- 45 46The following certs were successfully renewed: 47 /etc/letsencrypt/live/hoge.mobi-0001/fullchain.pem (success) 48 49The following certs could not be renewed: 50 /etc/letsencrypt/live/hoge.mobi/fullchain.pem (failure) 51------------------------------------------------------------------------------- 52Running post-hook command: systemctl start nginx 531 renew failure(s), 0 parse failure(s) 54 55IMPORTANT NOTES: 56 - The following errors were reported by the server: 57 58 Domain: fuga.space 59 Type: unauthorized 60 Detail: Invalid response from 61 http://fuga.space/.well-known/acme-challenge/R0cYYo2wllYDZs1UdARM8Wws2fNpGW5NW9Sghc7yOw0: 62 "<html> 63 <head><title>404 Not Found</title></head> 64 <body bgcolor="white"> 65 <center><h1>404 Not Found</h1></center> 66 <hr><center>" 67 68 To fix these errors, please make sure that your domain name was 69 entered correctly and the DNS A/AAAA record(s) for that domain 70 contain(s) the right IP address.
ドメインは、
hoge.mobi
fuga.space
の2つを設定していたのですが、現在このサーバーにfuga.spaceは他サーバーで運用してる状況です。
fuga.spaceの証明書は手で消して、nginxのfuga.space.confも削除しました。
よろしくお願いいたします。
回答1件
あなたの回答
tips
プレビュー
バッドをするには、ログインかつ
こちらの条件を満たす必要があります。