Hello! The auto renew of letsencrypt certificates is not working on my panel. I think this is due the /www/server/panel/vhost/cert/crontab.json file, because it is empty. Is there a way of re-generating this file?

The_Markus Hello, this correct renewal script, you can try it /www/server/panel/pyenv/bin/python /www/server/panel/class/acme_v2.py --renew=1

Hello, If I execute the command I get the error |-No SSL certificate found within 30 days! but I know that I have one certificate that needs renewal.

The_Markus For users upgrading from the old version to the new version, you need to manually click on the renewal of the visa to automatically renew it, because the certificate application module has been restructured

Ok so is there a way of getting the autorenew to work again?

The_Markus Only need to manually renew the registration, the system will record your visa information, you can automatically renew in the future

Yeah I renewed the certificates manually but when they expire there is no autorenew for them

The_Markus You can check whether there is a domain name in the file that needs to be renewed automatically /www/server/panel/config/letsencrypt.json

Hello, Some of the entries under "orders" have the status active and some have pending. The pending ones are expired and are not getting renewed automatically

The_Markus You can manually update all the certificates that need to be updated first, and then they will be updated automatically.

I found that a pending entry was no longer an active site and deleted it, I will try if it works now

SSL auto renew not working

sifyuyuspi

On file /www/server/panel/class/panelDnsapi.py at line 204 I replaced

from

url = urljoin(self.CLOUDFLARE_API_BASE_URL, "zones?status=active")

url = urljoin(self.CLOUDFLARE_API_BASE_URL, "zones?status=active&name={0}".format(domain_name))

and works perfectly

sifyuyuspi

Hello!

I found a new issue. Let's Encrypt isn't renewing through file verification when "Force HTTPS" option is enabled.

I'm using aaPanel LinuxStable 6.8.6 and Nginx 1.18.0

aaPanel_Jose

sifyuyuspi
Do you manually click to renew or in the cron?

sifyuyuspi

aaPanel_Jose the certificates have not been renewed automatically. when I'm going to renew automatically, I need to disable the option "force HTTPS" to renew manually.

I don't know what is causing the bug, but I suspect that the automatic renewal (which is configured in cron) is not working because HTTPS is forced.

Keep the "force HTTPS" option disabled should not be an alternative. When forcing HTTPS, this should make an exception for /.well-known/acme-challenge, so Let's Encrypt validate de certificate in HTTP protocol at port 80

aaPanel_Jose

sifyuyuspi
What you said makes sense, we will optimize it

lucaslosi

Same here. Can't renew even manually if the website has force https activted.

manthanesc

Please review the SSL Renewal module because It was working fine in old AA panel after update it was not working and it is serious issue as many of my websites stop working due to this and I was not aware of it. Please fix this issue ASAP.

aaPanel_Kern

Hi, can you give us your aapanel information? The server makes a snapshot backup first, if possible, please send it to kern@aapanel.com.
It is recommended to fill in the following
Post link:
SSH IP address, account password and port:
aapanel login link address and account password:
Detailed problem description:

No post link will not be able to know which user's information is, and the problem will not be processed

manthanesc

puzzleguru

Same problem
|-No SSL certificate found within 30 days!
With different sites on different servers and aapanels.

aaPanel_Kern

puzzleguru
Hello, are you verifying using file verification?
If you use DNS, do you add the txt record manually?

aaP_mihonukr

Hi. I have the same problem.
System: Debian GNU/Linux 11 x86_64(Py3.12.3)
aapanel 7.0.8
verification TXT record

If I update SSL manually, everything works.

aaPanel_Kern

Hello, thank you for your feedback. We will optimize this issue in the future.
Use DNS verification, use API or manually add txt records?
Do all websites use TXT records?

aaP_mihonukr

aaPanel_Kern

No post link will not be able to know which user's information is, and the problem will not be processed

aaP_mihonukr

aaPanel_Kern
I dont use DNS/API verification.
I user only verification TXT record.
I dont create any manuall txt records.
All websites use TXT records.

aaP_mihonukr

aaPanel_Kern
Yes I can give aapanel information.
What I need to do ?

aaPanel_Kern

No post link will not be able to know which user's information is, and the problem will not be processed

aaP_mihonukr

aaPanel_Kern

The server makes a snapshot backup first, if possible, please send it to kern@aapanel.com.
Who I can do this ?

aaPanel_Kern

Server provider

aaP_mihonukr

aaPanel_Kern
Sorry, but I can't give direct access to the server. I can provide configs, need files, logs, etc.

aaPanel_Kern

aaP_mihonukr
Please download and compress these files into one file and send it to us via email. Thank you.
/www/server/panel/data/default.db
/www/server/panel/data/db/ssl_data.db
/www/server/panel/config/letsencrypt.json
/www/server/panel/config/letsencrypt_v2.json

« Previous Page