VPS侦探论坛 › LNMP一键安装包 › SSL没有自动续期，不知道哪里问题，军哥帮忙看下吧

cinbo 发表于 2022-6-4 20:18:44

SSL没有自动续期，不知道哪里问题，军哥帮忙看下吧

请军哥帮忙看下，网站发现SSL没自动续，过期了。下面是日志的一部分，文件不能上传了。


Running cmd: upgrade
Using config home:/usr/local/acme.sh
default_acme_server
ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
GET
url='https://api.github.com/repos/acmesh-official/acme.sh/git/refs/heads/master'
timeout=
_CURL='curl --silent --dump-header /usr/local/acme.sh/http.header-L-g '
ret='0'
Already uptodate!
Upgrade success!
Running cmd: cron
Using config home:/usr/local/acme.sh
default_acme_server
ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
===Starting cron===
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
_stopRenewOnError
_server
_set_level='2'
di='/usr/local/nginx/conf/ssl/luotuody.com/'
d='luotuody.com'
_renewServer
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
DOMAIN_PATH='/usr/local/nginx/conf/ssl/luotuody.com'
Renew: 'luotuody.com'
Le_API='https://acme.zerossl.com/v2/DV90'
Renew to Le_API=https://acme.zerossl.com/v2/DV90
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
_main_domain='luotuody.com'
_alt_domains='*.luotuody.com'
Le_NextRenewTime='1651421587'
Using ACME_DIRECTORY: https://acme.zerossl.com/v2/DV90
_init api for server: https://acme.zerossl.com/v2/DV90
GET
url='https://acme.zerossl.com/v2/DV90'
timeout=
_CURL='curl --silent --dump-header /usr/local/acme.sh/http.header-L-g '
ret='0'
ACME_KEY_CHANGE
ACME_NEW_AUTHZ
ACME_NEW_ORDER
ACME_NEW_ACCOUNT
ACME_REVOKE_CERT
ACME_AGREEMENT
ACME_NEW_NONCE
Sleep 10 and retry.
GET
url='https://acme.zerossl.com/v2/DV90'
timeout=
_CURL='curl --silent --dump-header /usr/local/acme.sh/http.header-L-g '
ret='0'
ACME_KEY_CHANGE
ACME_NEW_AUTHZ
ACME_NEW_ORDER
ACME_NEW_ACCOUNT
ACME_REVOKE_CERT
ACME_AGREEMENT
ACME_NEW_NONCE
Sleep 10 and retry.
GET
url='https://acme.zerossl.com/v2/DV90'
timeout=
_CURL='curl --silent --dump-header /usr/local/acme.sh/http.header-L-g '
ret='0'
ACME_KEY_CHANGE
ACME_NEW_AUTHZ
ACME_NEW_ORDER
ACME_NEW_ACCOUNT
ACME_REVOKE_CERT
ACME_AGREEMENT
ACME_NEW_NONCE
Sleep 10 and retry.
GET
url='https://acme.zerossl.com/v2/DV90'
timeout=
_CURL='curl --silent --dump-header /usr/local/acme.sh/http.header-L-g '
ret='0'
ACME_KEY_CHANGE
ACME_NEW_AUTHZ
ACME_NEW_ORDER
ACME_NEW_ACCOUNT
ACME_REVOKE_CERT
ACME_AGREEMENT
ACME_NEW_NONCE
Sleep 10 and retry.
GET
url='https://acme.zerossl.com/v2/DV90'
timeout=
_CURL='curl --silent --dump-header /usr/local/acme.sh/http.header-L-g '
ret='0'
ACME_KEY_CHANGE
ACME_NEW_AUTHZ
ACME_NEW_ORDER
ACME_NEW_ACCOUNT
ACME_REVOKE_CERT
ACME_AGREEMENT
ACME_NEW_NONCE
Sleep 10 and retry.
GET
url='https://acme.zerossl.com/v2/DV90'
timeout=
_CURL='curl --silent --dump-header /usr/local/acme.sh/http.header-L-g '
ret='0'
ACME_KEY_CHANGE
ACME_NEW_AUTHZ
ACME_NEW_ORDER
ACME_NEW_ACCOUNT
ACME_REVOKE_CERT
ACME_AGREEMENT
ACME_NEW_NONCE
Sleep 10 and retry.
GET
url='https://acme.zerossl.com/v2/DV90'
timeout=
_CURL='curl --silent --dump-header /usr/local/acme.sh/http.header-L-g '
ret='0'
ACME_KEY_CHANGE='https://acme.zerossl.com/v2/DV90/keyChange'
ACME_NEW_AUTHZ
ACME_NEW_ORDER='https://acme.zerossl.com/v2/DV90/newOrder'
ACME_NEW_ACCOUNT='https://acme.zerossl.com/v2/DV90/newAccount'
ACME_REVOKE_CERT='https://acme.zerossl.com/v2/DV90/revokeCert'
ACME_AGREEMENT='https://secure.trust-provider.com/repository/docs/Legacy/20201020_Certificate_Subscriber_Agreement_v_2_4_click.pdf'
ACME_NEW_NONCE='https://acme.zerossl.com/v2/DV90/newNonce'
Using CA: https://acme.zerossl.com/v2/DV90
_on_before_issue
_chk_main_domain='luotuody.com'
_chk_alt_domains='*.luotuody.com'
Le_LocalAddress
d='luotuody.com'
Check for domain='luotuody.com'
_currentRoot='dns_ali'
d='*.luotuody.com'
Check for domain='*.luotuody.com'
_currentRoot='dns_ali'
d
config file is empty, can not read CA_KEY_HASH
Using config home:/usr/local/acme.sh
ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
_init api for server: https://acme.zerossl.com/v2/DV90
RSA key
config file is empty, can not read CA_EAB_KEY_ID
config file is empty, can not read CA_EAB_HMAC_KEY
config file is empty, can not read CA_EMAIL
No EAB credentials found for ZeroSSL, let's get one
acme.sh is using ZeroSSL as default CA now.
Please update your account with an email address first.
my@example.com
See: https://github.com/acmesh-official/acme.sh/wiki/ZeroSSL.com-CA
_on_issue_err
Please check log file for more details: /usr/local/acme.sh/acme.sh.log
Return code: 1
Error renew luotuody.com.
_error_level='1'
_set_level='2'
The NOTIFY_HOOK is empty, just return.
===End cron===

licess 发表于 2022-6-6 19:58:26

yggcwx 发表于 2022-6-6 15:48
手动续期命令是这个吗：

前段时间acme.sh 升级做了些变动后就要求这样了
只是续期当前已到期的证书 --force 不用加也可以

licess 发表于 2022-6-4 20:37:25

/usr/local/acme.sh/acme.sh --register-account -m 你邮箱
执行上述命令后再重新运行续期命令

cinbo 发表于 2022-6-5 19:46:13

多谢，续期成功了！

yggcwx 发表于 2022-6-6 15:41:24

licess 发表于 2022-6-4 20:37
/usr/local/acme.sh/acme.sh --register-account -m 你邮箱
执行上述命令后再重新运行续期命令 ...

军哥：怎么才能自动续期呢？我今天也发现3月1日的证书到期后没有自动续期

补充内容 (2022-6-6 17:49):
好像默认会自动续期？我的应用，因为在执行lnmp vhost add时先设置了一个目录，后来又得在编辑nginx配置时修改目录，域名.conf那里还是旧目录。有效果

补充内容 (2022-6-6 17:49):
修改为新目录后有效果

yggcwx 发表于 2022-6-6 15:48:56

手动续期命令是这个吗：
"/usr/local/acme.sh"/acme.sh --cron --home "/usr/local/acme.sh" --force

查看完整版本: SSL没有自动续期，不知道哪里问题，军哥帮忙看下吧