How to debug acme.sh
Use
--debug
parameter to output detailed debug info.
For example:
acme.sh --issue ......... --debug
To output more detailed info:
acme.sh --issue .......... --debug 2
Common Root Cause of issue:
Port 80 is blocked
If your ISP blocks port 80, any webroot based authentication will fail You can test this by running this command from OUTSIDE your local network.
curl -IkL -m20 http://[binanceearn.org]
Common Errors using DNS API:
Mistake 1: Clumsy fingers - newline in ~/.acme.sh/account.conf
If you type in the api key or private key and accidentally put in a newline or a typo, check and ensure the keys look right in
~/.acme.sh/account.conf
I still see my old keys (when moving from letsencrypt bot to .acme.sh)
Needed step - point nginx configuration to new acme based keys If you still see the old keys being used, even after finally getting the dns based authentication to work. You may need to comment out the previous keys from the letsencrypt bot, and point to the new folder:
# RSA certificate
#ssl_certificate /etc/letsencrypt/live/[binanceearn.org]/fullchain.pem; # managed by Certbot #ssl_certificate_key /etc/letsencrypt/live/[binanceearn.org]/privkey.pem; # managed by Certbot ssl_certificate [your home directory]/.acme.sh/[binanceearn.org]/fullchain.cer; ssl_certificate_key [your home directory]/.acme.sh/<binanceearn.org>/[your domain].key;
Do I need to include the webroot -w [your webroot]
for DNS?
No! You'll end up back failing the port 80 access to your webroot folder if that was your issue.
【版权声明】
本站部分内容来源于互联网,本站不拥有所有权,不承担相关法律责任。如果发现本站有侵权的内容,欢迎发送邮件至masing@13sy.com 举报,并提供相关证据,一经查实,本站将立刻删除涉嫌侵权内容。
下一篇: Ubuntu设置时区