Let'sEncrypt证书不能自动续期~~
第二条是自己添加的 ~~
请问是哪里姿势不对?
需要按反馈必读提供acme.sh的日志信息 licess 发表于 2019-5-30 09:06
需要按反馈必读提供acme.sh的日志信息
有一个域名是使用he的DNS 其它使用 cloudxns 难道是因为有一个是he的DNS导致的?
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
===Starting cron===
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
_stopRenewOnError
di='/usr/local/nginx/conf/ssl/222.baidu.com/'
d='222.baidu.com'
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
DOMAIN_PATH='/usr/local/nginx/conf/ssl/222.baidu.com'
Renew: '222.baidu.com'
Le_API='https://acme-v01.api.letsencrypt.org/directory'
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
Skip, Next renewal time is: Tue Jun 18 16:13:10 UTC 2019
Add '--force' to force to renew.
Return code: 2
Skipped 222.baidu.com
di='/usr/local/nginx/conf/ssl/www.xxx.com/'
d='www.xxx.com'
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
DOMAIN_PATH='/usr/local/nginx/conf/ssl/www.xxx.com'
Renew: 'www.xxx.com'
Le_API='https://acme-v02.api.letsencrypt.org/directory'
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
Skip invalid cert for: www.xxx.com
Return code: 0
di='/usr/local/nginx/conf/ssl/www.1234.com/'
d='www.1234.com'
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
DOMAIN_PATH='/usr/local/nginx/conf/ssl/www.1234.com'
Renew: 'www.1234.com'
Le_API='https://acme-v01.api.letsencrypt.org/directory'
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
Skip, Next renewal time is: Thu May 23 16:13:10 UTC 2019
Add '--force' to force to renew.
Return code: 2
Skipped www.1234.com
di='/usr/local/nginx/conf/ssl/www.baidu.com/'
d='www.baidu.com'
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
DOMAIN_PATH='/usr/local/nginx/conf/ssl/www.baidu.com'
Renew: 'www.baidu.com'
Le_API='https://acme-v01.api.letsencrypt.org/directory'
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
_main_domain='www.baidu.com'
_alt_domains='www.baidu.com'
Using ACME_DIRECTORY: https://acme-v01.api.letsencrypt.org/directory
_init api for server: https://acme-v01.api.letsencrypt.org/directory
GET
url='https://acme-v01.api.letsencrypt.org/directory'
timeout=
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
ret='0'
ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt.org/acme/key-change'
ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt.org/acme/new-authz'
ACME_NEW_ORDER='https://acme-v01.api.letsencrypt.org/acme/new-cert'
ACME_NEW_ACCOUNT='https://acme-v01.api.letsencrypt.org/acme/new-reg'
ACME_REVOKE_CERT='https://acme-v01.api.letsencrypt.org/acme/revoke-cert'
ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
ACME_NEW_NONCE
ACME_VERSION
Le_NextRenewTime='1555949587'
_on_before_issue
_chk_main_domain='www.baidu.com'
_chk_alt_domains='www.baidu.com'
Le_LocalAddress
d='www.baidu.com'
Check for domain='www.baidu.com'
_currentRoot='dns_he'
d='www.baidu.com'
Check for domain='www.baidu.com'
_currentRoot='dns_he'
d
_saved_account_key_hash is not changed, skip register account.
Read key length:
_createcsr
Multi domain='DNS:www.baidu.com,DNS:www.baidu.com'
Getting domain auth token for each domain
d='www.baidu.com'
Getting webroot for domain='www.baidu.com'
_w='dns_he'
_currentRoot='dns_he'
Getting new-authz for domain='www.baidu.com'
_init api for server: https://acme-v01.api.letsencrypt.org/directory
Try new-authz for the 0 time.
url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "www.baidu.com"}}'
RSA key
GET
url='https://acme-v01.api.letsencrypt.org/directory'
timeout=
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
ret='0'
POST
_post_url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
_ret='0'
code='201'
The new-authz request is ok.
entry='"type":"dns-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370","token":"CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY"'
token='CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY'
uri='https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370'
keyauthorization='CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY.WJPGl5eUVMprvopivNaXjAzYJao8XAAmNo99zCuI6Q0'
dvlist='www.baidu.com#CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY.WJPGl5eUVMprvopivNaXjAzYJao8XAAmNo99zCuI6Q0#https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370#dns-01#dns_he'
d='www.baidu.com'
Getting webroot for domain='www.baidu.com'
_w='dns_he'
_currentRoot='dns_he'
Getting new-authz for domain='www.baidu.com'
_init api for server: https://acme-v01.api.letsencrypt.org/directory
Try new-authz for the 0 time.
url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "www.baidu.com"}}'
POST
_post_url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
_ret='0'
code='201'
The new-authz request is ok.
entry='"type":"dns-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370","token":"CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY"'
token='CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY'
uri='https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370'
keyauthorization='CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY.WJPGl5eUVMprvopivNaXjAzYJao8XAAmNo99zCuI6Q0'
dvlist='www.baidu.com#CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY.WJPGl5eUVMprvopivNaXjAzYJao8XAAmNo99zCuI6Q0#https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370#dns-01#dns_he'
d
vlist='www.baidu.com#CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY.WJPGl5eUVMprvopivNaXjAzYJao8XAAmNo99zCuI6Q0#https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370#dns-01#dns_he,www.baidu.com#CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY.WJPGl5eUVMprvopivNaXjAzYJao8XAAmNo99zCuI6Q0#https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370#dns-01#dns_he,'
d='www.baidu.com'
_d_alias
txtdomain='_acme-challenge.www.baidu.com'
txt='nDCQDHKHOwwhRcpETIUj0CWdZNcZE4Et8wfyL_dNolU'
d_api='/usr/local/acme.sh/dnsapi/dns_he.sh'
Found domain api file: /usr/local/acme.sh/dnsapi/dns_he.sh
Using DNS-01 Hurricane Electric hook
No auth details provided. Please set user credentials using the $HE_Username and $HE_Password envoronment variables.
Error add txt for domain:_acme-challenge.www.baidu.com
pid
No need to restore nginx, skip.
_clearupdns
skip dns.
_on_issue_err
Please check log file for more details: /usr/local/acme.sh/acme.sh.log
url='https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370'
payload='{"resource": "challenge", "keyAuthorization": "CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY.WJPGl5eUVMprvopivNaXjAzYJao8XAAmNo99zCuI6Q0"}'
POST
_post_url='https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370'
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
_ret='0'
code='202'
url='https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370'
payload='{"resource": "challenge", "keyAuthorization": "CNtK-8UIc000XdNXHpz963CeuKnXRt6FQ4KfrY.WJPGl5eUVMprvopivNaXjAzYJao8XAAmNo99zCuI6Q0"}'
POST
_post_url='https://acme-v01.api.letsencrypt.org/acme/challenge/BpvTK7ps85heCez9H3bZysKyWaFY0yo3RnO7xUlRtRE/16082636370'
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
_ret='0'
code='400'
Return code: 1
Error renew www.baidu.com.
===End cron=== No auth details provided. Please set user credentials using the $HE_Username and $HE_Password envoronment variables.
你没export he要求的账号密码信息
页:
[1]