I let my cert expire yesterday like an idiot and the certbot renew command fails. Is there a way to make this work or do I have to create a whole new cert?
I have rebooted the server and that did not resolve the issue.
I let my cert expire yesterday like an idiot and the certbot renew command fails. Is there a way to make this work or do I have to create a whole new cert?
I have rebooted the server and that did not resolve the issue.
maybe this might help?
I donât see apache or nginx under services
what do you use as your webserver? also is it in a docker?
I thought it was nginx but that might have been on my old server, I moved from AWS to DO and I have UniFi and UNMS running on this server so I guess so? Docker is running on this machine.
I used a tutorial to set this up, this is the only Linux machine I run lol. Am noob
I use nginx, and renew with sudo certbot renew --preferred-challenges http
although I used to just do sudo certbot renew
but that broke at some point.
Am not really experiences in this either.
Stopped docker and ran certbot renew, worked
docker mustâve bind to the 443, not letting cerbot use it.
Still getting SSL error though, after reboot too. Does it take some time?
what was the output of the certbot? the certificates it got should be available for webserver to host.
Fuck idk lol, saw successful and restarted the whole machine. Running certbot again says nothing is up for renewal now though.
yeah it doesnât know what webserver is running. I assume itâs in docker? I never really used a docker tho so idk.
if itâs in a docker youâll probably need to mound the folder with certs to that docker and confiure the webserver to read those certs
in any case we need more info about your setup to try and help
What role does Docker play here? nginx image? Certbot image?
It is in a Docker, and I have no idea how to interact with that lol.
Iâm pretty sure I followed this guide, minus setting up the crontab part lol. Hence why Iâm in this situation I assume
I donât remember configuring Docker myself. I had issues upgrading UniFi or UNMS at some point and a UBNT employee on their community forums gave me a script to run, and I think thatâs what installed Docker?
docker ps
will show you what containers are running.
docker exec -it imageName bash
will give you shell on the image. You can navigate around after that.
If âbashâ doesnât work you can do âshâ or â/bin/bashâ. Some container images are really, really low environment so they donât have a lot of the luxuries we are used to.
Mmm⌠Interesting. Definitely find out what itâs running and how vital it is your system. If it is whatâs reading/caching the cert it might be whatâs causing the renewal issue.
Docker just shows a bunch of shit for UNMS, which Iâm not having issues with. If I list services I see UniFi though, but no web server? Iâm confuzzled
This shit is too confusing, after this Iâm going to run UNMS and UniFi on totally separate instances lol