search

tengattack / certbot-dns-aliyun

A certbot dns plugin to obtain certificates using aliyun.
Other
267 stars 59 forks source link

证书到期后,renew遇到问题 #3

Closed lllyyylll2 closed 5 years ago

lllyyylll2 commented 5 years ago

证书到期后,运行 certbot-auto renew 时遇到一下错误:

Cert is due for renewal, auto-renewing... Could not choose appropriate plugin: The manual plugin is not working; there may be problems with your existing configuration. The error was: PluginError('An authentication script must be provided with --manual-auth-hook when using the manual plugin non-interactively.',) Attempting to renew cert (test.com) from /etc/letsencrypt/renewal/test.com.conf produced an unexpected error: The manual plugin is not working; there may be problems with your existing configuration. The error was: PluginError('An authentication script must be provided with --manual-auth-hook when using the manual plugin non-interactively.',). Skipping.

需要做额外设置吗?

tengattack commented 5 years ago

看起来是 manual 插件的问题?和这个插件应该没有关系,建议重新生成新的证书试试~

然后试试 renew --dry-run

lllyyylll2 commented 5 years ago

哦 查到问题了, renew的时候加上插件参数就好了。 certbot-auto renew -a certbot-dns-aliyun:dns-aliyun --certbot-dns-aliyun:dns-aliyun-credentials ./credentials.ini

tengattack commented 5 years ago

这个插件参数应该可以被配置在配置文件里的

tengattack commented 5 years ago

/etc/letsencrypt/renewal/test.com.conf 下应该有个 [renewalparams] 配置了:

authenticator = certbot-dns-aliyun:dns-aliyun
certbot_dns_aliyun:dns_aliyun_credentials = /etc/letsencrypt/credentials.ini
lllyyylll2 commented 5 years ago

我看了下,没有自动生成该参数。

tengattack commented 5 years ago

应该也可以自己手动配置这两个参数