verliere immer Let's Encrypt Zertifikat

sven

Warum ist es bei mir so das ich jeden Tag mein Let’s Encrypt Zertifikat verliere? Ich habe es heute schon wieder erneuern müssen. Ich habe es so gemacht:
cd /opt/mailcow-dockerized
touch data/assets/ssl/force_renew
docker-compose restart acme-mailcow
Now check the logs for a renewal

docker-compose logs –tail=200 -f acme-mailcow
Wenn ich nun meine Seite aufrufe ist das Schloss aber immer noch nicht da.
Hier mal ein Auszug aus dem Log.
30.01.2021, 09:55:14 mail.example.com - Certificates were successfully renewed where required, sleeping for another day.
30.01.2021, 09:55:04 mail.example.com - Waiting for containers to settle…
30.01.2021, 09:54:59 mail.example.com - Reloading or restarting services… (1)
30.01.2021, 09:54:59 mail.example.com - Certificate successfully obtained
30.01.2021, 09:54:59 mail.example.com - Verified hashes.
30.01.2021, 09:54:59 mail.example.com - Deploying certificate /var/lib/acme/mail.example.com/cert.pem…
30.01.2021, 09:54:59 base64,mail.example.com - UGFyc2luZyBhY2NvdW50IGtleS4uLgpQYXJzaW5nIENTUi4uLgpGb3VuZCBkb21haW5zOiBhdXRvY29uZmlnLndvbHRtZWRpYS5kZSwgbW9vaG9vLndvbHRtZWRpYS5kZSwcud29sdHRtZWRpYS5kZS4uLgphdXRvZGlzY292ZXIud29sdG1lZGlhLmRlIHZlcmlmaWVkIQpWZXJpZnlpbmcgbW9vaG9vLndvbHRtZWRpYS5kZS4uLgptb29ob28ud29sdG1lZGlhLmRlIHZlcmlmaWVkIQpTaWduaW5nIGNlcnRpZmljYXRlLi4uCkNlcnRpZmljYXRlIHNpZ25lZCEK
30.01.2021, 09:54:39 mail.example.com - Resolver OK
30.01.2021, 09:54:39 mail.example.com - Checking resolver…
30.01.2021, 09:54:39 mail.example.com - Creating backups in /var/lib/acme/backups/mail.example.com/2021-01-30_09_54_39 …
30.01.2021, 09:54:39 mail.example.com - Certificate /var/lib/acme/mail.example.com/cert.pem doesn’t exist yet or forced renewal - start obtaining
30.01.2021, 09:54:39 mail.example.com - Confirmed AAAA record with IP 2a01:04f8:0c2c:ff39:0000:0000:0000:0002
30.01.2021, 09:54:39 mail.example.com - Found AAAA record for mail.example.com: 2a06:2f9:c9c:cc22::1 - skipping A record check
30.01.2021, 09:54:39 mail.example.com - Confirmed AAAA record with IP 2a01:04f8:0c2c:ff39:0000:0000:0000:0002
30.01.2021, 09:54:39 mail.example.com - Found AAAA record for autoconfig.example.de: 2a06:2f9:c9c:cc22::1 - skipping A record check
30.01.2021, 09:54:39 mail.example.com - Confirmed AAAA record with IP 2a01:04f8:0c2c:ff39:0000:0000:0000:0002
30.01.2021, 09:54:39 mail.example.com - Found AAAA record for autodiscover.example.de: 2a06:2f9:c9c:cc22::1 - skipping A record check
30.01.2021, 09:54:39 mail.example.com - OK: 76.99.125.22, 2a06:2f9:c9c:cc22::1
30.01.2021, 09:54:39 mail.example.com - Detecting IP addresses…
30.01.2021, 09:54:39 mail.example.com - Using existing Lets Encrypt account key /var/lib/acme/acme/account.pem
30.01.2021, 09:54:39 mail.example.com - Using existing domain rsa key /var/lib/acme/acme/key.pem
30.01.2021, 09:54:39 mail.example.com - Initializing, please wait…
30.01.2021, 09:54:39 mail.example.com - OK
30.01.2021, 09:54:39 mail.example.com - Waiting for domain table…
30.01.2021, 09:54:39 mail.example.com - Resolver OK
30.01.2021, 09:54:39 mail.example.com - Waiting for resolver…
30.01.2021, 09:54:39 mail.example.com - Nginx OK
30.01.2021, 09:54:39 mail.example.com - Waiting for Nginx…
30.01.2021, 09:54:39 mail.example.com - Database OK
30.01.2021, 09:54:38 mail.example.com - Waiting for database…
30.01.2021, 09:54:38 mail.example.com - Dovecot OK
30.01.2021, 09:54:38 mail.example.com - Waiting for Dovecot…
30.01.2021, 09:54:38 mail.example.com - Postfix OK
30.01.2021, 09:54:38 mail.example.com - Waiting for Postfix…
30.01.2021, 09:54:38 mail.example.com - Docker API OK
30.01.2021, 09:54:38 mail.example.com - Waiting for Docker API…
30.01.2021, 09:54:07 mail.example.com - Certificates were successfully validated, no changes or renewals required, sleeping for another day.
30.01.2021, 09:54:07 mail.example.com - Certificate /var/lib/acme/mail.example.com/cert.pem validation done, neither changed nor due for renewal.
30.01.2021, 09:54:07 mail.example.com - Confirmed AAAA record with IP 2a01:04f8:0c2c:ff39:0000:0000:0000:0002
30.01.2021, 09:54:07 mail.example.com - Found AAAA record for mail.example.com: 2a06:2f9:c9c:cc22::1 - skipping A record check
30.01.2021, 09:54:07 mail.example.com - Confirmed AAAA record with IP 2a01:04f8:0c2c:ff39:0000:0000:0000:0002
30.01.2021, 09:54:07 mail.example.com - Found AAAA record for autoconfig.example.de: 2a06:2f9:c9c:cc22::1 - skipping A record check
30.01.2021, 09:54:07 mail.example.com - Confirmed AAAA record with IP 2a01:04f8:0c2c:ff39:0000:0000:0000:0002
30.01.2021, 09:54:07 mail.example.com - Found AAAA record for autodiscover.example.de: 2a06:2f9:c9c:cc22::1 - skipping A record check
30.01.2021, 09:54:07 mail.example.com - OK: 76.99.125.22, 2a06:2f9:c9c:cc22::1
30.01.2021, 09:54:06 mail.example.com - Detecting IP addresses…
30.01.2021, 09:54:06 mail.example.com - Using existing Lets Encrypt account key /var/lib/acme/acme/account.pem
30.01.2021, 09:54:06 mail.example.com - Using existing domain rsa key /var/lib/acme/acme/key.pem
30.01.2021, 09:54:05 mail.example.com - Initializing, please wait…
30.01.2021, 09:54:05 mail.example.com - OK
30.01.2021, 09:54:05 mail.example.com - Certificates were successfully validated, no changes or renewals required, sleeping for another day.

pkernstock

Wie kann man ein “Zertifikat verlieren”? Wenn ein Zertifikat von LetsEncrypt ausgestellt wird, so ist das 60 Tage gueltig - kuerzer ist und kann es technisch nicht sein…

sebastian

Letzte Zeile steht doch, dass es kein neues Zertifikat gab und am folgenden Tag erneut geprüft wird, ob eines notwendig ist.

tanja32

sebastian Zertifikat ist ok , keine Aufgabe ,prüfe an ein anderen Tag. Alles gut

sebastian

tanja32 Alles klar