The certbot delete for nethserver.cuicable.com worked, However the 0001 did not work. I am posting the error. Would it be possiable to just delete the directory?
[root@nethserver etc]# certbot delete --cert-name nethserver.cuicable-0001.com
Saving debug log to /var/log/letsencrypt/letsencrypt.log
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
The following certificate(s) are selected for deletion:
* nethserver.cuicable-0001.com
Are you sure you want to delete the above certificate(s)?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o: y
No certificate found with name nethserver.cuicable-0001.com (expected /etc/letsencrypt/renewal/nethserver.cuicable-0001.com.conf).
[root@nethserver etc]#
Which is expected, But when I go and look in the directory where it is expecting things:
/etc/letsencrypt/live/nethserver.cuicable.com-0001 << here is what I see
[root@nethserver nethserver.cuicable.com-0001]# ls
fullchain.pem README
[root@nethserver nethserver.cuicable.com-0001]#
Now yes it is saying that the cert does not need to be renewed. However chain.pem is showing expired 8/26/2022. Which I do not understand how that can happen. It all should have the same Date.
chain.pem would have the intermediate CA signing cert(s), and should be valid for quite some time. In what way is it showing expired as of a few days ago? Because it’s looking like you obtained four different certs within five minutes this morning.
Hello Dan,
This is Greg I used up all of my reply’s "which apparently I can only reply 18 times. Ok, so I was able to use that command and I did not get an error.
Can you post the contents of fullchain.pem? And what site are you browsing to when you see that error? Because when I browse to nethserver.cuicable.com, I’m seeing a Cloudflare cert.
That certificate is valid 29 Aug - 27 Nov, but I’m also seeing that mx1.cuicable.com is serving an expired cert. Restarting the server would likely resolve this, but the certificate-update event should have also. Is mx1.cuicable.com actually hosted on the Nethserver machine?
Ok, I just did a data backup and then did a restart. No Sogo is no longer working. The service refuses to start. The error is below.
[root@nethserver log]# systemctl status sogod
● sogod.service - SOGo is a groupware server
Loaded: loaded (/usr/lib/systemd/system/sogod.service; enabled; vendor preset: disabled)
Active: failed (Result: exit-code) since Wed 2022-09-07 08:35:14 CDT; 22min ago
Main PID: 1616 (code=exited, status=1/FAILURE)
Sep 07 08:35:11 nethserver.cuicable.com systemd[1]: Starting SOGo is a groupware server...
Sep 07 08:35:14 nethserver.cuicable.com sogod[1616]: 2022-09-07 08:35:14.213 sogod[1616:1616] unable to get status of desc...iptor
Sep 07 08:35:14 nethserver.cuicable.com systemd[1]: Started SOGo is a groupware server.
Sep 07 08:35:14 nethserver.cuicable.com systemd[1]: sogod.service: main process exited, code=exited, status=1/FAILURE
Sep 07 08:35:14 nethserver.cuicable.com systemd[1]: Unit sogod.service entered failed state.
Sep 07 08:35:14 nethserver.cuicable.com systemd[1]: sogod.service failed.
Hint: Some lines were ellipsized, use -l to show in full.
[root@nethserver log]#
This is the error I see in syslog:
nethserver sogod: 2022-09-07 08:19:50.410 sogod[17631:17631] unable to get status of descriptor 2 - Bad file descriptor