webroot-path should not include full path, so skip .well-known/acme-challenge
urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from
Leave a reply
Tag Archives: acme.sh
acme.sh without install-cert
You need add Le_ReloadCmd manually to reload Nginx or Apache service:
vi /var/lib/acme/.acme.sh/domain.com/domain.com.conf
Le_ReloadCmd='sudo /usr/sbin/service nginx restart
new-authz error: {“type”:”urn:acme:error:unauthorized”,”detail”:”Error creating new authz :: Validations for new domains are disabled in the V1 API (https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1/88430)”,”status”: 403
acme.sh change api version
acme.sh v1 to v2
su - acme -s /bin/bash
mkdir temp && git clone https://github.com/acmesh-official/acme.sh.git temp
mv acme.sh acme.sh_backup && mv temp/acme.sh .
./acme.sh/acme.sh --issue
acme.sh update account error _on_issue_err
Let’s Encrypt - agreement issue
AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'
Update tos: https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf
url='https://acme-v01.api.letsencrypt.org/acme/reg/24591046'
payload='{"resource": "reg", "agreement": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf"}'
POST
url='https://acme-v01.api.letsencrypt.org/acme/reg/24591046'
_CURL='curl -L --silent --dump-header /var/lib/acme/.acme.sh/http.header '
_ret='0'
code='400'
Update account error.
on_issue_err
Please check log file for more details: /var/lib/acme/.acme.sh/acme.sh.log
Diagnosis versions:
If acme.sh --upgrade not helps, you need to update DEFAULT_AGREEMENT manually:
vim acme.sh/acme.sh
#DEFAULT_AGREEMENT="https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf"
DEFAULT_AGREEMENT="https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf"
letsencrypt update account error
[Sat Mar 7 10:53:36 EET 2020] url=’https://acme-v01.api.letsencrypt.org/acme/reg/24591046′
[Sat Mar 7 10:53:36 EET 2020] payload='{“resource”: “reg”, “agreement”: “https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf”}’
[Sat Mar 7 10:53:36 EET 2020] POST
[Sat Mar 7 10:53:36 EET 2020] url=’https://acme-v01.api.letsencrypt.org/acme/reg/24591046′
[Sat Mar 7 10:53:36 EET 2020] _CURL=’curl -L –silent –dump-header /var/lib/acme/.acme.sh/http.header ‘
[Sat Mar 7 10:53:37 EET 2020] _ret=’0′
[Sat Mar 7 10:53:37 EET 2020] code=’400’
[Sat Mar 7 10:53:37 EET 2020] Update account error.
[Sat Mar 7 10:53:37 EET 2020] _on_issue_err
[Sat Mar 7 10:53:37 EET 2020] Please check log file for more details: /var/lib/acme/.acme.sh/acme.sh.log
./acme.sh/acme.sh --upgrade
[Sat Mar 7 11:01:11 EET 2020] Installing from online archive.
[Sat Mar 7 11:01:11 EET 2020] Downloading https://github.com/Neilpang/acme.sh/archive/master.tar.gz
[Sat Mar 7 11:01:13 EET 2020] Extracting master.tar.gz
[Sat Mar 7 11:01:13 EET 2020] Installing to /var/lib/acme/.acme.sh
[Sat Mar 7 11:01:13 EET 2020] Installed to /var/lib/acme/.acme.sh/acme.sh
[Sat Mar 7 11:01:13 EET 2020] Installing alias to ‘/var/lib/acme/.bashrc’
[Sat Mar 7 11:01:13 EET 2020] OK, Close and reopen your terminal to start using acme.sh
[Sat Mar 7 11:01:13 EET 2020] Good, bash is found, so change the shebang to use bash as preferred.
[Sat Mar 7 11:01:13 EET 2020] OK
[Sat Mar 7 11:01:13 EET 2020] Install success!
[Sat Mar 7 11:01:13 EET 2020] Upgrade success!