Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update client software to continue using Let's Encrypt #1

Open
aAXEe opened this issue Jan 16, 2020 · 1 comment
Open

Update client software to continue using Let's Encrypt #1

aAXEe opened this issue Jan 16, 2020 · 1 comment

Comments

@aAXEe
Copy link
Owner

aAXEe commented Jan 16, 2020

https://github.com/aAXEe/nginx-proxy needs an update to use ACMEv2.

@stevo01 Can look into this?

The remainder mail below:

Hi,

According to our records, the software client you're using to get Let's
Encrypt TLS/SSL certificates issued or renewed at least one HTTPS certificate
in the past two weeks using the ACMEv1 protocol. Your client's IP address was:

195.37.132.70

Beginning June 1, 2020, we will stop allowing new domains to validate using
the ACMEv1 protocol. You should upgrade to an ACMEv2 compatible client before
then, or certificate issuance will fail. For most people, simply upgrading to
the latest version of your existing client will suffice. You can view the
client list at: https://letsencrypt.org/docs/client-options/

If you're unsure how your certificate is managed, get in touch with the
person who installed the certificate for you. If you don't know who to
contact, please view the help section in our community forum at
https://community.letsencrypt.org/c/help and use the search bar to check if
there's an existing solution for your question. If there isn't, please create
a new topic and fill out the help template.

ACMEv1 API deprecation details can be found in our community forum:
https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1

As a reminder: In the future, Let's Encrypt will be performing multiple
domain validation requests for each domain name when you issue a certificate.
While you're working on migrating to ACMEv2, please check that your system
configuration will not block validation requests made by new Let's Encrypt IP
addresses, or block multiple matching requests. Per our FAQ
(https://letsencrypt.org/docs/faq/), we don't publish a list of IP addresses
we use to validate, and this list may change at any time.

To receive more frequent updates, subscribe to our API Announcements:
https://community.letsencrypt.org/t/about-the-api-announcements-category

Thank you for joining us on our mission to create a more secure and privacy-
respecting Web!

All the best,

Let's Encrypt
@stevo01
Copy link

stevo01 commented Jan 16, 2020
edited
Loading

https://github.com/aAXEe/nginx-proxy needs an update to use ACMEv2.

@stevo01 Can look into this?

what do you think about following solution?

  • stop the docker container "letsencrypt" (based on image jrcs/letsencrypt-nginx-proxy-companion)
  • update the image to latest version (supports simp_le / ACME v2)
  • start the docker container "letsencrypt"

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@aAXEe @stevo01