• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue LetsEncrypt certificates no longer automatically renewing, even though Plesk says they should

K

Koert

New Pleskian
Server operating system version
AlmaLinux 8.10 (Cerulean Leopard)
Plesk version and microupdate number
18.0.63 #1
I am having issues with LetsEncrypt that used to automatically renew just fine, but recently stopped automatically renewing even though Plesk says that auto renewal is turned on for the domain, it doesn't renew. Does anyone have any clue what could be wrong, or how I can figure out what could be wrong?
 
I have two identical servers that suddenly stopped auto-renewing wildcard certificates from LetsEncrypt somewhere back in March or April. (probably earlier, but that's when they started expiring). I can manually renew them, and have had to do that twice since then. But they still do not auto-renew.

The best trouble-shooting I've been able to accomplish was that LetsDebug gave me errors connecting to the website when the website had both IPv4 and IPv6. Removing IPv6 (AAAA) DNS records immediately cleared up the LetsDebug errors and the manual renewals proceeded. I'm waiting to see if that fixes the auto-renew, but I won't know until the first week of October (30 days from expiration).

But its a bit counter-productive to have to delete AAAA records from sites.

Plesk is fully updated (18.0.63 Update #1) on both servers, running Debian 10.13 (1&1/IONOS repo). Above errors were present after the last Plesk update.
 
mopanim said:
Removing IPv6 (AAAA) DNS records immediately cleared up the LetsDebug errors and the manual renewals proceeded
Click to expand...
I ran into this once a while back. That implies there's an IPv6 connection or configuration problem. LE will try to connect from multiple source IPs and if it fails to connect it won't renew the cert.
 
You must log in or register to reply here.

Similar threads

C
Question Plesk with Cloudflare Proxy DNS Records and Letsencrypt..
Replies
0
Views
962
cpulove
C
Azurel
Resolved Mail for "Let`s Encrypt certificates for ***** have been issued/renewed" missing?
Replies
2
Views
992
Azurel
Azurel
R
Issue SSL/TLS cert for mail server not updating (Lets Encrypt)
Replies
2
Views
2K
tessa67
T
V
Issue Plesk SSL certificate clear
Replies
1
Views
352
Sebahat.hadzhi
Sebahat.hadzhi
C
Resolved Plesk mail SSL certificates invalid, common name problems (websites fine)
Replies
4
Views
625
Chucky_213123
C
Back
Top