Hello guys!

I have noticed a weird behavior from acme. Every day I receive the cloudflare “certificate transparency notice” because mailcow seems to request a new certificate for autodiscover.xxx every day. And when I visit the autodiscover page the cert is always issued today, despite that it should be valid for a month.

The log states:
mail01.xxx - Certificate /var/lib/acme/mail01.xxx/cert.pem missing or changed domains ‘xxxx’ - start obtaining

But there weren’t any changes to the domains at all and the file cert.pem is not missing or empty.

  • esackbauer

    • Community Hero
    Moolevel 373
  • Post #2

Do you have set ENABLE_SSL_SNI=y? If yes, why?
Do you have a reverse proxy?

Have something to say?

Join the community by quickly registering to participate in this discussion. We'd like to see you joining our great moo-community!

Hi, sorry for the late response.

Nope, this setting is disabled.
ENABLE_SSL_SNI=n

Yes, everything should be handled by NPMplus (A fork of the normal Nginx proxy manager)

Not sure if its normal but there is also a backup for nearly every day since the mailserver is running

5 days later

I’m going to try that out! I’m just wondering why the error message says “missing or changed domains ‘xxxx’ - start obtaining” because the file is clearly there and the setup “works”. It’s just getting new certs every day

No one is typing