OPNsense Forum

International Forums => German - Deutsch => Topic started by: greeno on October 23, 2019, 11:43:12 am

Title: lets encrypt problem
Post by: greeno on October 23, 2019, 11:43:12 am

guten Tag zusammen,

ich versuche ein lets encrypt Zertifikat auszusstellen kriege aber immer bei

Issue/Renewal Date: pending
last Acme Status: validation failed



hier das log:

[Wed Oct 23 11:32:23 CEST 2019]    Please check log file for more details: /var/log/acme.sh.log
[Wed Oct 23 11:32:23 CEST 2019]    _on_issue_err
[Wed Oct 23 11:32:22 CEST 2019]    skip dns.
[Wed Oct 23 11:32:22 CEST 2019]    dns_entries
[Wed Oct 23 11:32:22 CEST 2019]    _clearupdns
[Wed Oct 23 11:32:22 CEST 2019]    No need to restore nginx, skip.
[Wed Oct 23 11:32:22 CEST 2019]    pid
"detail": "KeyID header contained an    invalid account URL: \"https://acme-staging.api.letsencrypt.org/acme/reg/8659688\"",
[Wed Oct 23 11:32:22 CEST 2019]    Create new order error. Le_OrderFinalize not found. {
[Wed Oct 23 11:32:22 CEST 2019]    Le_OrderFinalize
[Wed Oct 23 11:32:22 CEST 2019]    Le_LinkOrder
[Wed Oct 23 11:32:22 CEST 2019]    code='400'
[Wed Oct 23 11:32:22 CEST 2019]    _ret='0'
[Wed Oct 23 11:32:22 CEST 2019]    _CURL='curl -L --silent --dump-header /var/etc/acme-client/home/http.header -g '
[Wed Oct 23 11:32:22 CEST 2019]    _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Wed Oct 23 11:32:22 CEST 2019]    POST
[Wed Oct 23 11:32:21 CEST 2019]    _ret='0'
[Wed Oct 23 11:32:20 CEST 2019]    _CURL='curl -L --silent --dump-header /var/etc/acme-client/home/http.header -g '
[Wed Oct 23 11:32:20 CEST 2019]    _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Wed Oct 23 11:32:20 CEST 2019]    HEAD
[Wed Oct 23 11:32:16 CEST 2019]    RSA key
[Wed Oct 23 11:32:16 CEST 2019]    payload='{"identifiers": [{"type":"dns","value":"fw.domain.com"}]}'
[Wed Oct 23 11:32:16 CEST 2019]    url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Wed Oct 23 11:32:16 CEST 2019]    d
[Wed Oct 23 11:32:16 CEST 2019]    Getting domain auth token for each domain
[Wed Oct 23 11:32:16 CEST 2019]    Single domain='fw.domain.com'
[Wed Oct 23 11:32:16 CEST 2019]    _createcsr
[Wed Oct 23 11:32:16 CEST 2019]    The domain key is here: /var/etc/acme-client/home/fw.domain.com/fw.domain.com.key
[Wed Oct 23 11:32:11 CEST 2019]    Using RSA: 4096
[Wed Oct 23 11:32:11 CEST 2019]    Use length 4096
[Wed Oct 23 11:32:11 CEST 2019]    ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Wed Oct 23 11:32:11 CEST 2019]    Using config home:/var/etc/acme-client/home
[Wed Oct 23 11:32:11 CEST 2019]    Creating domain key
[Wed Oct 23 11:32:11 CEST 2019]    Read key length:
[Wed Oct 23 11:32:11 CEST 2019]    _saved_account_key_hash is not changed, skip register account.
[Wed Oct 23 11:32:11 CEST 2019]    d
[Wed Oct 23 11:32:11 CEST 2019]    _currentRoot='/var/etc/acme-client/challenges'
[Wed Oct 23 11:32:11 CEST 2019]    Check for domain='fw.domain.com'
[Wed Oct 23 11:32:11 CEST 2019]    d='fw.domain.com'
[Wed Oct 23 11:32:11 CEST 2019]    Le_LocalAddress
[Wed Oct 23 11:32:11 CEST 2019]    _chk_alt_domains
[Wed Oct 23 11:32:11 CEST 2019]    _chk_main_domain='fw.domain.com'
[Wed Oct 23 11:32:11 CEST 2019]    _on_before_issue
[Wed Oct 23 11:32:11 CEST 2019]    ACME_VERSION='2'
[Wed Oct 23 11:32:11 CEST 2019]    ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Wed Oct 23 11:32:11 CEST 2019]    ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Wed Oct 23 11:32:11 CEST 2019]    ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'

kann mir vielleicht bitte jemand helfen wieso das nicht funkzt... ?
Besten Dank.