• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • Our UX team believes in the in the power of direct feedback and would like to invite you to participate in interviews, tests, and surveys.
    To stay in the loop and never miss an opportunity to share your thoughts, please subscribe to our UX research program. If you were previously part of the Plesk UX research program, please re-subscribe to continue receiving our invitations.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Issue LetsEncrypt certificates no longer automatically renewing, even though Plesk says they should

K

Koert

New Pleskian
Server operating system version
AlmaLinux 8.10 (Cerulean Leopard)
Plesk version and microupdate number
18.0.63 #1
I am having issues with LetsEncrypt that used to automatically renew just fine, but recently stopped automatically renewing even though Plesk says that auto renewal is turned on for the domain, it doesn't renew. Does anyone have any clue what could be wrong, or how I can figure out what could be wrong?
 
I have two identical servers that suddenly stopped auto-renewing wildcard certificates from LetsEncrypt somewhere back in March or April. (probably earlier, but that's when they started expiring). I can manually renew them, and have had to do that twice since then. But they still do not auto-renew.

The best trouble-shooting I've been able to accomplish was that LetsDebug gave me errors connecting to the website when the website had both IPv4 and IPv6. Removing IPv6 (AAAA) DNS records immediately cleared up the LetsDebug errors and the manual renewals proceeded. I'm waiting to see if that fixes the auto-renew, but I won't know until the first week of October (30 days from expiration).

But its a bit counter-productive to have to delete AAAA records from sites.

Plesk is fully updated (18.0.63 Update #1) on both servers, running Debian 10.13 (1&1/IONOS repo). Above errors were present after the last Plesk update.
 
mopanim said:
Removing IPv6 (AAAA) DNS records immediately cleared up the LetsDebug errors and the manual renewals proceeded
Click to expand...
I ran into this once a while back. That implies there's an IPv6 connection or configuration problem. LE will try to connect from multiple source IPs and if it fails to connect it won't renew the cert.
 
You must log in or register to reply here.

Similar threads

C
Question Plesk with Cloudflare Proxy DNS Records and Letsencrypt..
Replies
0
Views
896
cpulove
C
Azurel
Resolved Mail for "Let`s Encrypt certificates for ***** have been issued/renewed" missing?
Replies
2
Views
946
Azurel
Azurel
R
Issue SSL/TLS cert for mail server not updating (Lets Encrypt)
Replies
2
Views
2K
tessa67
T
V
Issue Plesk SSL certificate clear
Replies
1
Views
289
Sebahat.hadzhi
Sebahat.hadzhi
C
Resolved Plesk mail SSL certificates invalid, common name problems (websites fine)
Replies
4
Views
576
Chucky_213123
C
Back
Top