https证书过期续签失败

问答中心分类: OneinStackhttps证书过期续签失败
Rahul asked 3年 ago
用oneinstack部署的https,90天到期后续签失败,然后升级了oneinstack,删除了原来的vhost,重新添加vhost,安装https的时候一直报错
Let's Encrypt Verify error! DNS problem: NXDOMAIN looking up A for XXXXX.cn
[Thu Feb 14 09:08:53 CST 2019] Single domain='XXXXX.cn'
[Thu Feb 14 09:08:53 CST 2019] Getting domain auth token for each domain
[Thu Feb 14 09:08:53 CST 2019] Getting webroot for domain='XXXXX.cn'
[Thu Feb 14 09:08:53 CST 2019] Getting new-authz for domain='XXXXX.cn'
[Thu Feb 14 09:08:58 CST 2019] The new-authz request is ok.
[Thu Feb 14 09:08:58 CST 2019] Verifying:XXXXX.cn
[Thu Feb 14 09:09:04 CST 2019] XXXXX.cn:Verify error:Fetching http://XXXXX.cn/.well-known/acme-challenge/m-o3il0ITkSbFRI-zcUhpKfVuS7TR0npoG-njgQ4VMg: Error getting validation data
[Thu Feb 14 09:09:04 CST 2019] Please add '--debug' or '--log' to check more details.
[Thu Feb 14 09:09:04 CST 2019] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh
 
查看了域名在本地以及服务器上都能ping通,是什么原因呢?
还有就是如果自动续签失败了,如何手动续签呢?

3 Answers
oneinstack answered 3年 ago
crontab -l中有自动续期脚本,可以知晓加--debug看看,应该是自己修改了网站根目录,或者nginx配置文件导致let's验证失败。删除配置文件,重新vhost.sh生成试试

沐之杰 answered 3年 ago
我也遇到了此类问题,目前还没有找到解决办法。

oneinstack answered 3年 ago
通常是自己首次获取let's 证书后,自己修改网站根目录,let's 验证失败导致不能续期