CentOS 7.x bitnami redmine lets encrypt certificate renewal
From Notes_Wiki
<yambe:breadcrumb self="bitnami redmine lets encrypt certificate renewal">CentOS_7.x_redmine|redmine</yambe:breadcrumb>
CentOS 7.x bitnami redmine lets encrypt certificate renewal
If bitnami redmine or other renewal fails with email content similar to:
/opt/redmine-3.4.6-4/subversion/scripts/ctl.sh : subversion stopped /opt/redmine-3.4.6-4/apache2/scripts/ctl.sh : httpd stopped /opt/redmine-3.4.6-4/mysql/scripts/ctl.sh : mysql stopped 2019/03/01 05:30:11 [INFO] [helpdesk.sbarjatiya.com] acme: Trying renewal with 1109 hours remaining 2019/03/01 05:30:11 [INFO] [helpdesk.sbarjatiya.com] acme: Obtaining bundled SAN certificate 2019/03/01 05:30:27 failed to post JWS message. -> failed to HTTP POST to https://acme-v02.api.letsencrypt.org/acme/new-order -> Post https://acme-v02.api.letsencrypt.org/acme/new-order: net/http: timeout awaiting response headers /opt/redmine-3.4.6-4/mysql/scripts/ctl.sh : mysql started at port 3306 /opt/redmine-3.4.6-4/apache2/scripts/ctl.sh : httpd started at port 80 /opt/redmine-3.4.6-4/subversion/scripts/ctl.sh : subversion started at port 3690
Then renewal can be attempted manually using steps similar to:
[root@helpdesk ~]# crontab -l 0 0 1 * * /etc/lego/renew-certificate.sh 2> /dev/null [root@helpdesk ~]# /etc/lego/renew-certificate.sh /opt/redmine-3.4.6-4/subversion/scripts/ctl.sh : subversion stopped Syntax OK /opt/redmine-3.4.6-4/apache2/scripts/ctl.sh : httpd stopped /opt/redmine-3.4.6-4/mysql/scripts/ctl.sh : mysql stopped 2019/03/01 08:16:38 [INFO] [helpdesk.sbarjatiya.com] acme: Trying renewal with 1107 hours remaining 2019/03/01 08:16:38 [INFO] [helpdesk.sbarjatiya.com] acme: Obtaining bundled SAN certificate 2019/03/01 08:16:38 [INFO] [helpdesk.sbarjatiya.com] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz/eC99UiziNeeCQCCyNPGjTOIhaKiR-IJmcGCxqOc_6dU 2019/03/01 08:16:38 [INFO] [helpdesk.sbarjatiya.com] acme: Trying to solve HTTP-01 2019/03/01 08:16:39 [INFO] [helpdesk.sbarjatiya.com] Served key authentication 2019/03/01 08:16:44 [INFO] [helpdesk.sbarjatiya.com] The server validated our request 2019/03/01 08:16:44 accept tcp [::]:80: use of closed network connection 2019/03/01 08:16:44 [INFO] [helpdesk.sbarjatiya.com] acme: Validations succeeded; requesting certificates 2019/03/01 08:16:45 [INFO] [helpdesk.sbarjatiya.com] Server responded with a certificate. /opt/redmine-3.4.6-4/mysql/scripts/ctl.sh : mysql started at port 3306 Syntax OK /opt/redmine-3.4.6-4/apache2/scripts/ctl.sh : httpd started at port 80 /opt/redmine-3.4.6-4/subversion/scripts/ctl.sh : subversion started at port 3690 [root@helpdesk ~]#
<yambe:breadcrumb self="bitnami redmine lets encrypt certificate renewal">CentOS_7.x_redmine|redmine</yambe:breadcrumb>