nginx-proxy-manager: SSL/Let's encrypt not working anymore after update or any other version
Checklist
- Have you pulled and found the error with
jc21/nginx-proxy-manager:latestdocker image?- Yes
- Are you sure you’re not using someone else’s docker image?
- Yes
- Have you searched for similar issues (both open and closed)?
- Yes
Describe the bug
Recieved an email from let’s encrypt I had to update my ssl certiface. Went into nginx proxy manger, cert renewal, got internal error, saw something about cerbot failure. Saw on this forum a lot of users had similar issues. Tried reverting to older versions but still the same error. Have tried to re-install/delete everything from scratch but ssl cert fails everytime. I’m not adapt at all when it comes to ssl/reverse proxy but so far nginx proxy manager was the only solution working for me a few months ago with reverse proxy. Now i’m at a total loss what to do.
Error: Command failed: certbot certonly --config “/etc/letsencrypt.ini” --cert-name “npm-2” --agree-tos --authenticator webroot --email “admindfdfdf@tutanota.com” --preferred-challenges “dns,http” --domains “phofsddd.duckdns.org” Saving debug log to /var/log/letsencrypt/letsencrypt.log Some challenges have failed. Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
at ChildProcess.exithandler (node:child_process:402:12)
at ChildProcess.emit (node:events:513:28)
at maybeClose (node:internal/child_process:1100:16)
at Process.ChildProcess._handle.onexit (node:internal/child_process:304:5)
Nginx Proxy Manager Version
2.9.21 2.9.20 2.9.19
About this issue
- Original URL
- State: open
- Created a year ago
- Reactions: 1
- Comments: 64 (1 by maintainers)
Hi, it’s still not working for me.
I’m investigating a bit but can’t figure it out, help is appreciated.
I have several certificates running and the existing ones work just fine and follow the same configuration and hardware as the ones that have expired and I can’t renew.
But I can’t manage to request new ones or redo old ones (i did to many request now so i have to wait until tomorrow i think to check again).
At first I thought it might have to do with pi-hole but my server ignores that and when I turn off pi-hole it doesn’t work either. Could it be that the requests are coming through ipv6 and I haven’t configured that? I’m using
DISABLE_IPV6: 'true'I just don’t understand the necessity of -Use a DNS challenge- I use stator as a provider, is this necessary?
I’m a bit stuck. any help is welcome.
Thanks!
Short update, if i press a still working url within NPM is going fine if i do ‘test server reach-ability’ i get
Yeah thanks but i’m using duckdns and noip, not willing to change DNS provider because of this issue.
I really like nginx proxy manager but this happens way to frequently in my opinion.
Jesus christ… same crap again… I had to renew ssl certificate and voila “internal error”.
yeah, and the resolution is not use proxy manager anymore as discussed
Here is a guide on how to successfully install Lets Encrypt on Nginx Proxy Manager to secure your docker containers.
same issue on Docker 4.18 macOS ventura 13.3.1 nginx 2.9.19 and 2.9.20(21,22) and 2.10.2.
Not sure what is going, been looking into Traefik
Thank you for posting @EDIflyer. I had the exact same issue,
Timeout during connect. I had to disable my hosts to get the auto renew to work. It worked smoothly but manually.I manually tried to access
/.well-known/acme-challenge/, and I saw that it was redirecting towards my drone CI container instead of whatever it was supposed to go to (this could be wrong way to test, however, as certbot doesn’t place the files for that long to test I think…).However, I had another version working on a separate production server and I saw no issues there… I will report back with more data if I have.
Have you guys noticed you’re on github in the issue section and not reddit?
brugh, im a noob, if i could do it so can other noobs. NGINX is no easier, it has more confusing syntax for configuration than caddy. If you need help you can pm me
guys, stop wasting time on nginx, its garbage. Use caddy instead. Ive moved to caddy and i can forget about certs, because caddy does them automagically. No more “your certs are expiring in few days, please renew” bs. Caddy is lw, Easy to use with a single file where you define every service you have, and thats it. The configuration is easy to understand. Yes, caddy does not have fancy UI, but you just need to set up a service once and forget about it.
I was also getting the “import ClientBase” error with namecheap DNS. Strangely it worked 2 hours earlier with namecheap and another provider, several domains. Fresh, latest NPM install. I got it fixed by running (in a container-attached console): pip install certbot pip install acme pip install certbot-dns-namecheap
That was all and then it worked as before/expected.
I agree. I am just lucky at this moment…
Thats does not work either… So frustrating… all my domains will soon expire…
I may not swear! But FFS, I have this issue.
Error: Command failed: certbot certonly --config “/etc/letsencrypt.ini” --work-dir “/tmp/letsencrypt-lib” --logs-dir “/tmp/letsencrypt-log” --cert-name “npm-39” --agree-tos --authenticator webroot --email “mail@domain.com” --preferred-challenges “dns,http” --domains “mail.domain.com” Saving debug log to /tmp/letsencrypt-log/letsencrypt.log Some challenges have failed. Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /tmp/letsencrypt-log/letsencrypt.log or re-run Certbot with -v for more details.
I had this with 2.9.19 and still when I pulled 2.10.2
Now I cannot renew any domain anymore!
HELP is very much appreciated and needed!
I tried normal challenge and (new?) dns challenge (but not sure if I did that right since I use a *.domain.com dyn dns with Joker)
It always worked well and I also managed to create around 30 certs succesfully
HELP
Some more logging:
EDIT: Any renewal gives me:
Any creation gives me above error…
This is a major issue