Certbot fails to renew certificates

Superpaul209

Hello,

I have an issue with my CryptPad instance. I have installed certbot to renew automatically my certificates. The first setup was fine but its unable to renew them.

The nginx server provides only HTTPS and not HTTP for LetsEncrypt Challenges. Even after some changes to the config, I couldn't get it working.
LetsEncrypt must access the challenges in HTTP to renew my certificates.

server {

listen 80 default_server;
listen [::]:80 default_server;

server_name cryptpad.malacher.fr sandbox.malacher.fr;

return 404;

}

I have added those lines at the end of my nginx config but nothing works.

http://cryptpad.malacher.fr/.well-known/acme-challenge/_8dpEpanl_diEmzcF0Eucs2l6yTQIutBzeFhZy6BtbE
http://sandbox.malacher.fr/.well-known/acme-challenge/3I25uXga-7PGPftsTuPn0KzMOld-GsGtxRZO4t9uRFk

Do you have ideas how to fix the issue please ?

Thank you

Mathilde

Hello,

The issue very likely comes from your Certbot setup.

I'm currently writing a thorough tutorial about Nginx & TLS certificates generation with acme.sh for our blog. I hope to publish it in the coming days.

Have a good day!

Mathilde

And here is the blog post: https://blog.cryptpad.org/2022/12/12/tutorial-nginx-tls-acme/ 😊