Certbot error certificer "Client with the currently selected authenticator does not support any combination..."

Ultimamnte me di cuenta que al intentar certificar mis dominios certbot envia este error:
Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.
Buscando en google encontre este articulo que lo que dice básicamente es que Let’s Encrypt ha desahabilitado (resientemente) el TLS-SNI-01 challenge por lo que se recomienda actualizar certbot a 0.21.0 o superior (que por ahora no esta viable :o) y una alternativa es usar certbot-auto que forza la ultima versión y pues estas son las intrucciones instalar y usar certbot-auto:

1.- Instalar certbot-auto
wget https://dl.eff.org/certbot-auto
chmod a+x ./certbot-auto
./certbot-auto --help
2.- certificar nuestros dominios (pero siempre recomiendo usar --test-cert para comprobar que exista algun error) 

a).- Para nginx
./certbot-auto --nginx -d example.com -d www.example.com --test-cert
b).- Para apache
./certbot-auto --apache -d example.com -d www.example.com --test-cert

Si al final obtines un resultado asi significa que si es posible certificar nuestro dominio.
Output
IMPORTANT NOTES: - Congratulations! Your certificate and chain have been saved at /etc/letsencrypt/live/example.com/fullchain.pem. Your cert will expire on 2017-10-23. To obtain a new or tweaked version of this certificate in the future, simply run certbot again with the "certonly" option. To non-interactively renew *all* of your certificates, run "certbot renew" - Your account credentials have been saved in your Certbot configuration directory at /etc/letsencrypt. You should make a secure backup of this folder now. This configuration directory will also contain certificates and private keys obtained by Certbot so making regular backups of this folder is ideal. - If you like Certbot, please consider supporting our work by: Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate Donating to EFF: https://eff.org/donate-le

Si todo sale como esperamos usamos --force-renew
a).- Para nginx
./certbot-auto --nginx -d example.com -d www.example.com --force-renew
b).- Para apache
./certbot-auto --apache -d example.com -d www.example.com --force-renew

Comentarios

Facebook Like

Entri Populer

hackear wifi con kali linux 📡

Instalar Netbeans 10 en Windows 10

Instalar netbeans 10 en ubuntu 18.04