Text only | Text with Images

OPNsense Forum

Archive => 21.7 Legacy Series => Topic started by: bringha on October 24, 2021, 07:51:08 PM

Title: ACME client gui: Miss staging environment switch
Post by: bringha on October 24, 2021, 07:51:08 PM
Hi there,

I just wanted to expand a new domain with letsencrypt certificates via acme plugin (version 3.2) and noted that in acme client->settings->settings there is no switch anymore to change between staging and prod environment of letsencrypt for testing.

Has someone a recommendation how to change the environments now? Did I miss a fundamental change in logic for letsencrypt?

Looking forward to your reply..

Br br
Title: Re: ACME client gui: Miss staging environment switch
Post by: Patrick M. Hausen on October 24, 2021, 08:01:40 PM
It's in the account settings now.
Title: Re: ACME client gui: Miss staging environment switch
Post by: bringha on October 24, 2021, 08:14:22 PM
Thanks a lot for the fast reply

So letsencrypt [default] is then production and letsencrypt test CA is then staging?!

Br br

Title: Re: ACME client gui: Miss staging environment switch
Post by: Patrick M. Hausen on October 24, 2021, 08:41:49 PM
Yes, sure :-)
Title: Re: ACME client gui: Miss staging environment switch
Post by: bringha on October 24, 2021, 09:23:31 PM
Ok in so far it seems to use staging  :),

Although the domain does exist and resolves via nslookup ....

I get now  :-\

Code Select

AcmeClient: validation for certificate failed: domain.xxxdyn.io
AcmeClient: domain validation failed (dns01)
AcmeClient: using challenge type: deSEC_DNS-01
AcmeClient: account is registered: domain.xxxdyn.io
AcmeClient: using CA: letsencrypt_test
AcmeClient: issue certificate: domain.xxxdyn.io
AcmeClient: certificate must be issued/renewed: domain.xxxdyn.io


Is it still necessary to deinstall acme, haproxy, ....  and start from new as some people suggest?

Br br
Text only | Text with Images