CentOS 8.x wordpress bitnami lets encrypt certificate renewal error

From Notes_Wiki

Home > CentOS > CentOS 8.x > Web based tools > Wordpress > CentOS 8.x wordpress bitnami lets encrypt certificate renewal error

Similar article at CentOS 7.x Owncloud bitnami lego lets-encrypt certificate renewal issue

If a bitnami wordpress instance is setup on AWS lightsail instance using CentOS 7.x create lightsail wordpress instance, then the certificate renewal might fail with error similar to: 

2021/03/01 08:04:02 [INFO] [example.in] acme: Trying renewal with 702 hours remaining
2021/03/01 08:04:02 [INFO] [example.in, www.example.in] acme: Obtaining bundled SAN certificate
2021/03/01 08:04:03 [INFO] [example.in] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/11223168575
2021/03/01 08:04:03 [INFO] [www.example.in] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/11223168580
2021/03/01 08:04:03 [INFO] [example.in] acme: Could not find solver for: tls-alpn-01
2021/03/01 08:04:03 [INFO] [example.in] acme: use http-01 solver
2021/03/01 08:04:03 [INFO] [www.example.in] acme: Could not find solver for: tls-alpn-01
2021/03/01 08:04:03 [INFO] [www.example.in] acme: use http-01 solver
2021/03/01 08:04:03 [INFO] [example.in] acme: Trying to solve HTTP-01
2021/03/01 08:04:09 [INFO] [www.example.in] acme: Trying to solve HTTP-01
2021/03/01 08:04:15 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/11223168575
2021/03/01 08:04:16 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/11223168575
2021/03/01 08:04:16 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/11223168580
2021/03/01 08:04:16 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/11223168580
2021/03/01 08:04:16 error: one or more domains had a problem:
[example.in] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: Invalid response from https://example.in/ [65.0.216.60]: "<!DOCTYPE html>\n<html class=\"html\" lang=\"en-US\">\n<head>\n\t<meta charset=\"UTF-8\">\n\t<link rel=\"profile\" href=\"https://gmpg.org/xfn/", url: 
[www.example.in] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: Invalid response from https://www.example.in/ [65.0.216.60]: "<!DOCTYPE html>\n<html class=\"html\" lang=\"en-US\">\n<head>\n\t<meta charset=\"UTF-8\">\n\t<link rel=\"profile\" href=\"https://gmpg.org/xfn/", url:

To solve this look at the renewal command in crontab 

crontab -l

and replace --http with --tls

Thus, steps for renewal are: 

/opt/wordpress-<version>/ctlscript.sh stop
/opt/wordpress-<version>/letsencrypt/lego --path /opt/wordpress-<version>/letsencrypt --email="example@example.com" --tls --http-timeout 30 --http.webroot /opt/wordpress-<version>/apps/letsencrypt --domains=example.in renew
/opt/wordpress-<version>/ctlscript.sh start

Refer:


Home > CentOS > CentOS 8.x > Web based tools > Wordpress > CentOS 8.x wordpress bitnami lets encrypt certificate renewal error

Retrieved from "http://www.sbarjatiya.com/notes_wiki/index.php?title=CentOS_8.x_wordpress_bitnami_lets_encrypt_certificate_renewal_error&oldid=7404"