Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Letsencrypt renew certs doesn't work in standalone installation (by quick install guide)
See original GitHub issueAfter install by “Jitsi Meet quick install”, letsencrypt renew doesn’t work.
1. First problem. Crontab task:
#!/bin/bash
/usr/local/sbin/certbot-auto renew >> /var/log/le-renew.log
Get this error:
-------------------------------------------------------------------------------
Processing /etc/letsencrypt/renewal/***.conf
-------------------------------------------------------------------------------
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator standalone, Installer None
Renewing an existing certificate
Performing the following challenges:
tls-sni-01 challenge for ***
Cleaning up challenges
Attempting to renew cert (***) from /etc/letsencrypt/renewal/***.conf produced an unexpected error: Problem binding to port 443: Could not bind to IPv4 or IPv6.. Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/***/fullchain.pem (failure)
-------------------------------------------------------------------------------
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/***/fullchain.pem (failure)
-------------------------------------------------------------------------------
1 renew failure(s), 0 parse failure(s)
Reason: jitsi already busy 443 port.
2. Second problem:
After:
service jitsi-videobridge stop
and update certs jitsu-meet still not using renewal certs.
Reason - no phase for converting ssl keys again https://github.com/jitsi/jitsi-meet/blob/master/resources/install-letsencrypt-cert.sh#L89-L98
Issue Analytics
- State:
- Created 5 years ago
- Reactions:1
- Comments:12 (3 by maintainers)
Top Results From Across the Web
How To Use Certbot Standalone Mode to Retrieve Let's ...
In this tutorial, we've installed the Certbot Let's Encrypt client, downloaded an SSL certificate using standalone mode, and enabled automatic ...
Read more >Unable to renew a standalone certificate - Help
My domain is: animesh.blog I ran this command: sudo certbot renew It produced this output: Cert is due for renewal, auto-renewing.
Read more >Install Let's Encrypt to Create SSL Certificates - Linode
The instructions in this guide install Let's Encrypt and add certificates manually, which is not necessary for most users.
Read more >Common Certbot Errors & Solutions - Webdock.io
Make sure your Certbot installation is up to date · Checking if your Let's Encrypt Certificate is working · Invalid response / The...
Read more >Update: Using Free Let's Encrypt SSL/TLS Certificates with ...
Now you can easily set up Let's Encrypt with NGINX Open Source or ... All installed certificates will be automatically renewed and reloaded....
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Some time ago I was working on this to update the renew procedure but didn’t have time to fix/test it. https://github.com/jitsi/jitsi-meet/tree/letsencrypt-renew But now based on your comments I see that my renew script is missing the phase for converting ssl keys. So this needs updating. This is still on my TODO list, but not sure when I will get to it. Any help is welcome.
It is a shame this has been marked wontfix by a bot and left untouched. You can’t even use jitsi-meet without ssl enabled and an auto-renewing certbot seems pretty important for a turnkey solution like jitsi.