Submitted by xorax on Tue, 05/10/2016 - 02:32
Hi,
If an account key has been already created by the official letsencrypt client in /etc/letsencrypt/accounts, virtualmin refuse to create it without any error. To reproduce, create the folder mkdir -p /etc/letsencrypt/accounts and go to a virtual-server > Manage SSL Certficate > Let'sEncrypt tab then try to generated. The output is only "Request failed:".
The problem come from webmin/letsencrypt-lib.pl , in this code (around line 107) :
# But first check if the native Let's Encrypt client was used previously
# for this system - if so, it must be used in future due to the account
# key.
-d "/etc/letsencrypt/accounts" &&
return (0, &text('letsencrypt_enative', '/etc/letsencrypt'));
ACME does not required to use only one account key by server. This check should not exists, so all this code should be removed.
Thanks
Status:
Closed (fixed)
Comments
Submitted by JamieCameron on Wed, 05/11/2016 - 00:31 Comment #1
I'll fix that broken error message - however, the condition it is warning against is legitimate. If you've used the native Let's Encrypt client on your system before, using the ACME client for the same domain will cause problems because they use different account keys.
Submitted by dspeake on Fri, 06/03/2016 - 11:32 Comment #2
If you don't mind re-creating all your previous certificates, you can simply delete /opt/letsencrypt and /etc/letsencrypt and the module will start working.
Submitted by xorax on Fri, 04/06/2018 - 04:06 Comment #3
This is fixed in the recent version. Webmin seems always use it own key.
Submitted by IssueBot on Fri, 04/20/2018 - 04:07 Comment #4
Automatically closed - issue fixed for 2 weeks with no activity.