Home
Help
Search
Login
Register
OPNsense Forum
»
International Forums
»
German - Deutsch
»
[Solved]24.1.5_2 Probleme Acme Zertifikat erneuern
« previous
next »
Print
Pages: [
1
]
Author
Topic: [Solved]24.1.5_2 Probleme Acme Zertifikat erneuern (Read 963 times)
Melittamann
Newbie
Posts: 15
Karma: 1
[Solved]24.1.5_2 Probleme Acme Zertifikat erneuern
«
on:
April 05, 2024, 10:45:05 am »
Hallo alle zusammen,
mein Zert wir leider nicht erneuert, habe schon den Client resetet, deinst, neuinst.
Keine Besserung. Immer wieder AcmeClient: domain validation failed (http01).
Ausser den Updates seit Januar wurde nichts verändert. der debuglevel steht auf 3, aber das zu deuten übersteigt doch meine Fähigkeiten.
Kann mir hierbei jemand bitte helfen?
Das Zert ist noch gültig.
Hier das Acmelog
2024-04-05T10:31:03 acme.sh [Fri Apr 5 10:31:03 CEST 2024] Diagnosis versions:
2024-04-05T10:31:03 acme.sh [Fri Apr 5 10:31:03 CEST 2024] code='200'
2024-04-05T10:31:03 acme.sh [Fri Apr 5 10:31:03 CEST 2024] _ret='0'
2024-04-05T10:31:02 acme.sh [Fri Apr 5 10:31:02 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g '
2024-04-05T10:31:02 acme.sh [Fri Apr 5 10:31:02 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545937/8-eKgA'
2024-04-05T10:31:02 acme.sh [Fri Apr 5 10:31:02 CEST 2024] POST
2024-04-05T10:31:02 acme.sh [Fri Apr 5 10:31:02 CEST 2024] payload='{}'
2024-04-05T10:31:02 acme.sh [Fri Apr 5 10:31:02 CEST 2024] url='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545937/8-eKgA'
2024-04-05T10:31:02 acme.sh [Fri Apr 5 10:31:02 CEST 2024] =======Begin Send Signed Request=======
2024-04-05T10:31:02 acme.sh [Fri Apr 5 10:31:02 CEST 2024] code='400'
2024-04-05T10:31:02 acme.sh [Fri Apr 5 10:31:01 CEST 2024] _ret='0'
2024-04-05T10:31:00 acme.sh [Fri Apr 5 10:31:00 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g '
2024-04-05T10:31:00 acme.sh [Fri Apr 5 10:31:00 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ'
2024-04-05T10:31:00 acme.sh [Fri Apr 5 10:31:00 CEST 2024] POST
2024-04-05T10:31:00 acme.sh [Fri Apr 5 10:31:00 CEST 2024] payload='{}'
2024-04-05T10:31:00 acme.sh [Fri Apr 5 10:31:00 CEST 2024] url='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ'
2024-04-05T10:31:00 acme.sh [Fri Apr 5 10:31:00 CEST 2024] =======Begin Send Signed Request=======
2024-04-05T10:31:00 acme.sh [Fri Apr 5 10:31:00 CEST 2024] code='400'
2024-04-05T10:31:00 acme.sh [Fri Apr 5 10:31:00 CEST 2024] _ret='0'
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g '
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ'
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] POST
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] payload='{}'
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] url='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ'
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] =======Begin Send Signed Request=======
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] See:
https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] Please add '--debug' or '--log' to check more details.
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] _on_issue_err
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] skip dns.
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] dns_entries
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] _clearupdns
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:59 CEST 2024] No need to restore nginx, skip.
2024-04-05T10:30:59 acme.sh [Fri Apr 5 10:30:58 CEST 2024] pid
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] Debugging, skip removing: /var/etc/acme-client/challenges/.well-known/acme-challenge/2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] ret='0'
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g --connect-timeout 1'
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] timeout=1
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] url='
http://mail.Name.de/.well-known/acme-challenge/2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0'
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] GET
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] Debug: get token url.
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] Invalid status, mail.Name.de:Verify error detail:meineip: Fetching
http://mail.Name.de/.well-known/acme-challenge/2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0
: Error getting validation data
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] code='200'
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] _ret='0'
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g '
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:57 CEST 2024] POST
2024-04-05T10:30:57 acme.sh [Fri Apr 5 10:30:57 CEST 2024] payload
2024-04-05T10:30:57 acme.sh [Fri Apr 5 10:30:57 CEST 2024] url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:57 acme.sh [Fri Apr 5 10:30:57 CEST 2024] =======Begin Send Signed Request=======
2024-04-05T10:30:57 acme.sh [Fri Apr 5 10:30:57 CEST 2024] checking
2024-04-05T10:30:55 acme.sh [Fri Apr 5 10:30:55 CEST 2024] sleep 2 secs to verify again
2024-04-05T10:30:55 acme.sh [Fri Apr 5 10:30:55 CEST 2024] Pending, The CA is processing your order, please just wait. (1/30)
2024-04-05T10:30:55 acme.sh [Fri Apr 5 10:30:55 CEST 2024] Lets check the status of the authz
2024-04-05T10:30:55 acme.sh [Fri Apr 5 10:30:55 CEST 2024] trigger validation code: 200
2024-04-05T10:30:55 acme.sh [Fri Apr 5 10:30:55 CEST 2024] code='200'
2024-04-05T10:30:55 acme.sh [Fri Apr 5 10:30:55 CEST 2024] _ret='0'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g '
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] POST
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] payload='{}'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] url='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] =======Begin Send Signed Request=======
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] writing token:2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0 to /var/etc/acme-client/challenges/.well-known/acme-challenge/2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] wellknown_path='/var/etc/acme-client/challenges/.well-known/acme-challenge'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] _currentRoot='/var/etc/acme-client/challenges'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] _authz_url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] uri='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] keyauthorization='2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] d='mail.Name.de'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] Verifying: mail.Name.de
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] ok, let's start to verify
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] d='autodiscover.Name.de'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] d='mail.Name.de'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] d='mail.Name.de'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] vlist='mail.Name.de#2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro#https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ#http-01#/var/etc/acme-client/challenges#https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947,mail.Name.de#2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro#https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ#http-01#/var/etc/acme-client/challenges#https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947,autodiscover.Name.de#3aEIPYto-nbmuQYgSGmecPidwubA5vyg_suAhDvM2gM.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro#https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545937/8-eKgA#http-01#/var/etc/acme-client/challenges#https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545937,'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] d
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] dvlist='autodiscover.Name.de#3aEIPYto-nbmuQYgSGmecPidwubA5vyg_suAhDvM2gM.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro#https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545937/8-eKgA#http-01#/var/etc/acme-client/challenges#https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545937'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] keyauthorization='3aEIPYto-nbmuQYgSGmecPidwubA5vyg_suAhDvM2gM.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] uri='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545937/8-eKgA'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] token='3aEIPYto-nbmuQYgSGmecPidwubA5vyg_suAhDvM2gM'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] entry='"type":"http-01","status":"pending","url":"
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545937/8-eKgA
","token":"3aEIPYto-nbmuQYgSGmecPidwubA5vyg_suAhDvM2gM"'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] _authz_url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545937'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] _currentRoot='/var/etc/acme-client/challenges'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] _w='/var/etc/acme-client/challenges'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:54 CEST 2024] Getting webroot for domain='autodiscover.Name.de'
2024-04-05T10:30:54 acme.sh [Fri Apr 5 10:30:53 CEST 2024] d='autodiscover.Name.de'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] dvlist='mail.Name.de#2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro#https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ#http-01#/var/etc/acme-client/challenges#https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] keyauthorization='2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] uri='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] token='2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] entry='"type":"http-01","status":"pending","url":"
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ
","token":"2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0"'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] _authz_url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] _currentRoot='/var/etc/acme-client/challenges'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] _w='/var/etc/acme-client/challenges'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] Getting webroot for domain='mail.Name.de'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] d='mail.Name.de'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] dvlist='mail.Name.de#2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro#https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ#http-01#/var/etc/acme-client/challenges#https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] keyauthorization='2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0.6204wRappELPu4BjVCghq2Jmb44ELIb_zwwifq99Jro'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] uri='
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] token='2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] entry='"type":"http-01","status":"pending","url":"
https://acme-v02.api.letsencrypt.org/acme/chall-v3/334793545947/mc62EQ
","token":"2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0"'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] _authz_url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] _currentRoot='/var/etc/acme-client/challenges'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] _w='/var/etc/acme-client/challenges'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] Getting webroot for domain='mail.Name.de'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] d='mail.Name.de'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] code='200'
2024-04-05T10:30:53 acme.sh [Fri Apr 5 10:30:53 CEST 2024] _ret='0'
2024-04-05T10:30:52 acme.sh [Fri Apr 5 10:30:52 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g '
2024-04-05T10:30:52 acme.sh [Fri Apr 5 10:30:52 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:52 acme.sh [Fri Apr 5 10:30:52 CEST 2024] POST
2024-04-05T10:30:52 acme.sh [Fri Apr 5 10:30:52 CEST 2024] payload
2024-04-05T10:30:52 acme.sh [Fri Apr 5 10:30:52 CEST 2024] url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545947'
2024-04-05T10:30:52 acme.sh [Fri Apr 5 10:30:52 CEST 2024] =======Begin Send Signed Request=======
2024-04-05T10:30:52 acme.sh [Fri Apr 5 10:30:52 CEST 2024] code='200'
2024-04-05T10:30:52 acme.sh [Fri Apr 5 10:30:52 CEST 2024] _ret='0'
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g '
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545937'
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] POST
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] payload
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] url='
https://acme-v02.api.letsencrypt.org/acme/authz-v3/334793545937'
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] =======Begin Send Signed Request=======
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] Le_OrderFinalize='
https://acme-v02.api.letsencrypt.org/acme/finalize/1235724876/258305208767'
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] Le_LinkOrder='
https://acme-v02.api.letsencrypt.org/acme/order/1235724876/258305208767'
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] code='201'
2024-04-05T10:30:51 acme.sh [Fri Apr 5 10:30:51 CEST 2024] _ret='0'
2024-04-05T10:30:50 acme.sh [Fri Apr 5 10:30:50 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g '
2024-04-05T10:30:50 acme.sh [Fri Apr 5 10:30:50 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/new-order'
2024-04-05T10:30:50 acme.sh [Fri Apr 5 10:30:50 CEST 2024] POST
2024-04-05T10:30:50 acme.sh [Fri Apr 5 10:30:50 CEST 2024] _ret='0'
2024-04-05T10:30:49 acme.sh [Fri Apr 5 10:30:49 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.5rY4d7Hs -g -I '
2024-04-05T10:30:49 acme.sh [Fri Apr 5 10:30:49 CEST 2024] _post_url='
https://acme-v02.api.letsencrypt.org/acme/new-nonce'
2024-04-05T10:30:49 acme.sh [Fri Apr 5 10:30:49 CEST 2024] HEAD
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] RSA key
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] payload='{"identifiers": [{"type":"dns","value":"mail.Name.de"},{"type":"dns","value":"mail.Name.de"},{"type":"dns","value":"autodiscover.Name.de"}]}'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] url='
https://acme-v02.api.letsencrypt.org/acme/new-order'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] =======Begin Send Signed Request=======
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] d
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] d='autodiscover.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] d='mail.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] Getting domain auth token for each domain
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] Multi domain='DNS:mail.Name.de,DNS:mail.Name.de,DNS:autodiscover.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] _createcsr
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] Read key length:4096
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] _saved_account_key_hash is not changed, skip register account.
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] d
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] _currentRoot='/var/etc/acme-client/challenges'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] Check for domain='autodiscover.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] d='autodiscover.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] _currentRoot='/var/etc/acme-client/challenges'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] Check for domain='mail.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] d='mail.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] _currentRoot='/var/etc/acme-client/challenges'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] Check for domain='mail.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] d='mail.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] Le_LocalAddress
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] _chk_alt_domains='mail.Name.de,autodiscover.Name.de'
2024-04-05T10:30:47 acme.sh [Fri Apr 5 10:30:47 CEST 2024] _chk_main_domain='mail.Name.de'
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] _on_before_issue
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] Using CA:
https://acme-v02.api.letsencrypt.org/directory
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] ACME_NEW_NONCE='
https://acme-v02.api.letsencrypt.org/acme/new-nonce'
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] ACME_AGREEMENT='
https://letsencrypt.org/documents/LE-SA-v1.4-April-3-2024.pdf'
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] ACME_REVOKE_CERT='
https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] ACME_NEW_ACCOUNT='
https://acme-v02.api.letsencrypt.org/acme/new-acct'
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] ACME_NEW_ORDER='
https://acme-v02.api.letsencrypt.org/acme/new-order'
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] ACME_NEW_AUTHZ
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] ACME_KEY_CHANGE='
https://acme-v02.api.letsencrypt.org/acme/key-change'
2024-04-05T10:30:46 acme.sh [Fri Apr 5 10:30:46 CEST 2024] ret='0'
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header -L --trace-ascii /tmp/tmp.bisLGJk3 -g '
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] timeout=
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] url='
https://acme-v02.api.letsencrypt.org/directory'
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] GET
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] _init api for server:
https://acme-v02.api.letsencrypt.org/directory
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] Using ACME_DIRECTORY:
https://acme-v02.api.letsencrypt.org/directory
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] Le_NextRenewTime='1706482821'
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] DOMAIN_PATH='/var/etc/acme-client/cert-home/64c91fb71a3393.48574628/mail.Name.de'
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] ACME_DIRECTORY='
https://acme-v02.api.letsencrypt.org/directory'
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] Using config home:/var/etc/acme-client/home
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] _alt_domains='mail.Name.de,autodiscover.Name.de'
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] _main_domain='mail.Name.de'
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] Running cmd: issue
2024-04-05T10:30:45 acme.sh [Fri Apr 5 10:30:45 CEST 2024] Using server:
https://acme-v02.api.letsencrypt.org/directory
«
Last Edit: April 09, 2024, 09:05:36 am by Melittamann
»
Logged
Melittamann
Newbie
Posts: 15
Karma: 1
Re: 24.1.5_2 Probleme Acme Zertifikat erneuern
«
Reply #1 on:
April 05, 2024, 01:32:13 pm »
Und in meiner account.conf wird auf eine account.json verwiesen, die aber nicht in dem angegeben Pfad liegt
ACCOUNT_JSON_PATH='/var/etc/acme-client/accounts/64c91caa7a9a22.XXXXXXXX_prod/account.json
Logged
Melittamann
Newbie
Posts: 15
Karma: 1
Re: 24.1.5_2 Probleme Acme Zertifikat erneuern
«
Reply #2 on:
April 08, 2024, 07:33:40 am »
Keiner eine Idee? Keine Hinweis der im Log zu finden ist?
Ich setzte auch HAProxy ein für den Mailserver.
Könnte der evtl über das >Fontend Problem machen?
Bin für jeden Hinweis dankbar
Logged
Monviech (Cedrik)
Global Moderator
Hero Member
Posts: 1637
Karma: 178
Re: 24.1.5_2 Probleme Acme Zertifikat erneuern
«
Reply #3 on:
April 08, 2024, 08:20:50 am »
Im Log steht ein Hinweis:
2024-04-05T10:30:58 acme.sh [Fri Apr 5 10:30:58 CEST 2024] Invalid status, mail.Name.de:Verify error detail:meineip: Fetching
http://mail.Name.de/.well-known/acme-challenge/2pkoHix7OIq_LTEbp3oW5yrsWbVhovv3008dl8NvgT0
: Error getting validation data
Das bedeutet, dass /.well-known/acme-challenge/* nicht bei
http://mail.Name.de
gefunden wird.
Vielleicht DNS oder Firewall Problem?
Logged
Hardware:
DEC740
Melittamann
Newbie
Posts: 15
Karma: 1
Re: 24.1.5_2 Probleme Acme Zertifikat erneuern
«
Reply #4 on:
April 08, 2024, 01:21:29 pm »
Ich habe da wissentlich nichts verändert, aber dann begebe ich mich da mal auf Spurensuche.
Was ich nachvollziehen konnte, ist das es nicht mehr geht seit dem Upgrade auf die 24.1 nach dem 30.01.24.
Logged
Melittamann
Newbie
Posts: 15
Karma: 1
Re: 24.1.5_2 Probleme Acme Zertifikat erneuern
«
Reply #5 on:
April 08, 2024, 04:45:06 pm »
Also
ich habe mal unter ACME Challengetyps auf den OPN-Sense Webdienst umgeschaltet und Zert angefordert. Ging sofort.
Auch ein erneutes Anfordern wieder mit dem HAProxy HTTP Frontend Integration ging sofort.
Verstehen muss ich das jetzt nicht wirklich, würde ich aber gerne.
Logged
Melittamann
Newbie
Posts: 15
Karma: 1
Re: 24.1.5_2 Probleme Acme Zertifikat erneuern
«
Reply #6 on:
April 09, 2024, 09:05:01 am »
Es scheint alles wieder zu funktionieren, auch die nächtliche Prüfung läuft ohne Fehler.
In 90 tagen wird es sich zeigen
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
International Forums
»
German - Deutsch
»
[Solved]24.1.5_2 Probleme Acme Zertifikat erneuern