Notifications

Clear all

Let's encrypt renewal issue after update to Version 1.4.4

Page 2 / 2 Prev

General Questions

Last Post by Trevor Robinson 4 years ago

10 Posts

4 Users

0 Likes

1,683 Views

RSS

Posts: 38

harpwro

Topic starter

Sep 08, 2019 2:36 am

(@harpwro)

Trusted Member

Joined: 7 years ago

Well.... that did the trick!

We have 2 other servers updated the same way, will replace server files with those

Something didn't work out properly updating with the script for sure

Thank you

Antonio

Posts: 68

Dolphyn5

Oct 16, 2019 10:22 am

(@dolphyn5)

Estimable Member

Joined: 8 years ago

I've had many LetsEncrypt auto-renewal failures, and I'm finally realizing that the problem is related to various storage locations used by letsencrypt-win-simple and now wacs.exe.

My C:SolidCPServerbinLetsEncrypt includes both letsencrypt.exe (version 1.9.7) and wacs.exe (version 2.0.8), and I've previously used letsencrypt.exe (version 1.9.1) which stored its information in user-specific locations, and so I've ended up with a mess of information in all of the following registry and file locations.

1.9.4 and earlier:
HKEY_CURRENT_USERSoftwareletsencrypt-win-simple
%APPDATA%letsencrypt-win-simple
1.9.5:
HKEY_LOCAL_MACHINESoftwareletsencrypt-win-simple
%PROGRAMDATA%letsencrypt-win-simple
1.9.9:
%PROGRAMDATA%letsencrypt-win-simplehttpsacme-v01.api.letsencrypt.org
2.0.0:
%programdata%win-acmeacme-v02.api.letsencrypt.org

SolidCP 1.4.4 appears to be using the newer wacs.exe, so my next step might be to make sure all certificates are in the new system (by running wacs --import and/or using SolidCP to reinstall some certificates). Then maybe I can delete the data from the older locations, as well as the older scheduled task(s), keeping the newer one called "win-acme renew".

But I'm not sure if wacs.exe is really working correctly. It does seem to work, but when I run it manually I see many errors as shown below.

Posts: 1456

Trevor Robinson

Admin

Oct 18, 2019 11:57 am

(@trobinson)

Noble Member

Joined: 8 years ago

Hello,

You are correct we are using WACS from now on but we included the older LE-Win-Simple client as there was no documented way to upgrade.

You can use the upgrade switch or run the WACS client and select upgrade from the more options menu.

Regards,

Trevor

Posts: 3

bigrbuk

Jan 15, 2020 3:30 pm

(@bigrbuk)

New Member

Joined: 4 years ago

Are certificates now auto updated using WACS? Or will I have to manually do something with certificates to force WACS (and ACMEv2) usage?

Posts: 1456

Trevor Robinson

Admin

Jan 16, 2020 12:23 am

(@trobinson)

Noble Member

Joined: 8 years ago

Hello,

At the current moment they are not automatically imported to WACS as at the time we implemented this to SolidCP the import options was not finalized.

I have added this to the tracker ( https://github.com/FuseCP/SolidCP/issues/21 ).

Regards,

Trevor

Page 2 / 2 Prev

2 Forums
2,172 Topics
9,958 Posts
0 Online
3,449 Members

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed