Certificate has a problem: The certificate has expired or is not yet valid. #2497
Comments
|
Have you examined /var/log/letsencrypt/letsencrypt.log for error messages? |
|
No error messages lately... Both [mta-sts] certificates have expired and have not been renewed before. |
|
You could try running |
|
did not work, but again no error messages... more ideas? Am I the only one with this issue? |
|
What is the output for these domains when you run |
|
oh, good hint, I missed that in the GUI maybe. skipped: mta-sts.*****: skipped: mta-sts.*****: |
|
Hmm, rDNS checks for IPv4 and IPv6 are fine. No idea what the issue is, hopefully someone else!? |
|
Are you letting the box serve dns? Or some external dns provider? In the latter case, check that the A/AAAA records for the mta-sts subdomain are set. |
|
All setup up correctly at Cloudflare, but following errors are visible. 2x MTA-STS policy is missing: STSFetchResult.FETCH_ERROR This box's reverse DNS is currently [Not Set], but it should be mail.die-familie-nowak.de. Your ISP or cloud provider will have instructions on setting up reverse DNS for this box. |
|
There seems to be no aaaa dns entry for the mta-sts subdomain, that will block requesting the certificate. |
|
so, I do need to setup a AAAA entry for mta-sts subdomain at Cloudflare? |
|
Yes |
|
perfect, it worked. Thanks @kiekerjan Not sure why there were certificates which expired at all. Haven't change any DNS settings at Cloudflare lately |
I noticed that expired TLS (SSL) certificates will not be renewed currently, maybe due to the Let's Encrypt changes!? How is this gonna be addressed and solved for MiaB? Is it possible to trigger the renewal manually as a workaround?
The text was updated successfully, but these errors were encountered: