Hello
I am reaching a limit in certificate creation.
I have followed the steps of this link
https://kb.virtubox.net/knowledgebase/cloudflare-ssl-origin-certificates-nginx/
In /etc/nginx/ssl/, i have created two files
- domain-fr-cert.pem
- domain-fr-key.pem
My "/etc/letsencrypt/config/account.conf" file looks like this :
#LOG_FILE="/etc/letsencrypt/config/acme.sh.log"
#LOG_LEVEL=1
AUTO_UPGRADE='1'
#NO_TIMESTAMP=1
CERT_HOME='/etc/letsencrypt/renewal'
USER_PATH='/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin'
UPGRADE_HASH='c33e544882268742d525e08c1fbf237ce'
SAVED_CF_Token='5522222547884158dhdhb5fa92543d4949c'
SAVED_CF_Account_ID='kfjjfkf2554df544ffjfllf355823cf'
SAVED_CF_Zone_ID=''
My "/var/www/domain.fr/conf/nginx/ssl.conf" looks like this
listen 443 ssl http2;
listen [::]:443 ssl http2;
ssl_certificate /etc/nginx/ssl/domain-fr-cert.pem;
ssl_certificate_key /etc/nginx/ssl/domain-fr-key.pem;
ssl_stapling_verify on;
I tape the following command to update a subdomain with proper certificate :
wo site update 123.domain.fr --letsencrypt=wildcard --dns=dns_cf --force
I got the following error :
2021-02-23 06:29:38,931 (DEBUG) wo.core.logging : Writing content in /var/lib/wo/cert.csv
2021-02-23 06:29:38,932 (DEBUG) wo.core.logging : Changing permission of /var/lib/wo/cert.csv, Perm:384
2021-02-23 06:29:38,932 (INFO) wo : Validation mode : DNS mode with dns_cf
2021-02-23 06:29:38,932 (INFO) wo : Issuing SSL cert with acme.sh
2021-02-23 06:29:38,932 (DEBUG) wo.core.logging : Running command: /etc/letsencrypt/acme.sh --config-home '/etc/letsencrypt/config' --issue -d '123.domain.fr' -d '*.123.domain.fr' --dns dns_cf -k "ec-384" -f
2021-02-23 06:29:41,022 (DEBUG) wo.core.logging : Command Output: [mardi 23 février 2021, 06:29:39 (UTC+0100)] Using CA: https://acme-v02.api.letsencrypt.org/directory
[mardi 23 février 2021, 06:29:39 (UTC+0100)] Multi domain='DNS:123.domain.fr,DNS:*.123.domain.fr'
[mardi 23 février 2021, 06:29:39 (UTC+0100)] Getting domain auth token for each domain
,
Command Error: [mardi 23 février 2021, 06:29:41 (UTC+0100)] Create new order error. Le_OrderFinalize not found. {
"type": "urn:ietf:params:acme:error:rateLimited",
"detail": "Error creating new order :: too many certificates already issued for: domain.fr: see https://letsencrypt.org/docs/rate-limits/",
"status": 429
}
[mardi 23 février 2021, 06:29:41 (UTC+0100)] Please add '--debug' or '--log' to check more details.
[mardi 23 février 2021, 06:29:41 (UTC+0100)] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
2021-02-23 06:29:41,023 (INFO) wo : Issuing SSL cert with acme.sh
2021-02-23 06:29:41,023 (ERROR) wo : Please make sure your properly set your DNS API credentials for acme.sh
If you are using sudo, use "sudo -E wo"
It seems that too many certificates has been issued for acme.sh.
How to overcome that ?
Thanks