• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Failed to automatic renew certificate

ACME
2
4
694
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • U
    Unoptanio
    last edited by Unoptanio Nov 24, 2023, 6:47 PM Nov 24, 2023, 2:00 PM

    Pfsense 2.7.0
    ACME 0.7.5
    I use it to secure access the webgui from the internet

    login-to-view

    What is going on?
    Why doesn't the certificate automatically renew?

    Message1 in email
    login-to-view

    Message2 in email
    login-to-view

    login-to-view

    Why did I receive the email notification of failure to renew the certificate?

    login-to-view

    login-to-view

    now, by clicking on the certificate renewal button you will see:
    [Fri Nov 24 15:22:09 CET 2023] The dns manual mode can not renew automatically, you must issue it again manually. You'd better use the other modes instead.

    login-to-view

    I have changed absolutely nothing since I created the certificate the first time.
    This would be my first certificate renewal

    Until now I have been using certified without any problems. and I'm still continuing to use it because it hasn't expired yet

    login-to-view

    pfSensePlus24.03 2U BareMetal Asrock Industrial IMB-X1314MicroATX
    CPU: i7-13700@5.2GHz, RAM:32GB ECC, n°2 Samsung 870EVO SATA 2.5” SSD 1TB (ZFS) Raid1
    n°3 Intel i225-LM 2500/1000/100Mbps, n°1 NIC Intel i350-T4V2 10/100/1000 Mbps 4*GLAN, n°1 Intel X520-DA2

    S 1 Reply Last reply Nov 24, 2023, 5:36 PM Reply Quote 0
    • S
      SteveITS Galactic Empire @Unoptanio
      last edited by Nov 24, 2023, 5:36 PM

      @Unoptanio I don’t use ACME but “manual mode” needs you to make the DNS change again:
      https://docs.netgate.com/pfsense/en/latest/packages/acme/settings-validation.html#dns-manual

      Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
      When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
      Upvote 👍 helpful posts!

      U 1 Reply Last reply Nov 24, 2023, 6:45 PM Reply Quote 0
      • U
        Unoptanio @SteveITS
        last edited by Unoptanio Nov 24, 2023, 7:03 PM Nov 24, 2023, 6:45 PM

        @SteveITS
        What system can I use that works and does automatic renewal? I use it to access the webgui from the internet.

        I have Aruba DNS
        Is it possible use Aruba API to update TXT record ?

        pfSensePlus24.03 2U BareMetal Asrock Industrial IMB-X1314MicroATX
        CPU: i7-13700@5.2GHz, RAM:32GB ECC, n°2 Samsung 870EVO SATA 2.5” SSD 1TB (ZFS) Raid1
        n°3 Intel i225-LM 2500/1000/100Mbps, n°1 NIC Intel i350-T4V2 10/100/1000 Mbps 4*GLAN, n°1 Intel X520-DA2

        S 1 Reply Last reply Nov 24, 2023, 7:20 PM Reply Quote 0
        • S
          SteveITS Galactic Empire @Unoptanio
          last edited by Nov 24, 2023, 7:20 PM

          @Unoptanio I don’t think so? The other methods are all on that page.

          Or just use the self signed cert.

          Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
          When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
          Upvote 👍 helpful posts!

          1 Reply Last reply Reply Quote 0
          1 out of 4
          • First post
            1/4
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.