Giter Club home page Giter Club logo

Comments (3)

war59312 avatar war59312 commented on August 23, 2024 1

Success! 🥇

[will@esxi:~] /etc/init.d/w2c-letsencrypt start
Running 'start' action
Starting certificate renewal.
Existing cert for esxi.mydomain.com not issued by Let's Encrypt. Requesting a new one!
Generating RSA private key, 4096 bit long modulus
********************************************************************************************************************************************************************************************************************************************************************************************++++
******************************************************************************************************************************************************************************************++++
e is 65537 (0x10001)
Serving HTTP on 0.0.0.0 port 8120 (http://0.0.0.0:8120/) ...
Parsing account key...
Parsing CSR...
Found domains: esxi.mydomain.com
Getting directory...
Directory found!
Registering account...
Already registered! Account ID: https://acme-v02.api.letsencrypt.org/acme/acct/773171596
Creating new order...
Order created!
Verifying esxi.mydomain.com...
127.0.0.1 - - [15/Oct/2022 20:19:27] "GET /.well-known/acme-challenge/tSXffOByr_HF5V-6Xcyrea4xFj0rb-p3DoqO726FfzM HTTP/1.1" 200 -
127.0.0.1 - - [15/Oct/2022 20:19:28] "GET /.well-known/acme-challenge/tSXffOByr_HF5V-6Xcyrea4xFj0rb-p3DoqO726FfzM HTTP/1.1" 200 -
127.0.0.1 - - [15/Oct/2022 20:19:28] "GET /.well-known/acme-challenge/tSXffOByr_HF5V-6Xcyrea4xFj0rb-p3DoqO726FfzM HTTP/1.1" 200 -
127.0.0.1 - - [15/Oct/2022 20:19:28] "GET /.well-known/acme-challenge/tSXffOByr_HF5V-6Xcyrea4xFj0rb-p3DoqO726FfzM HTTP/1.1" 200 -
127.0.0.1 - - [15/Oct/2022 20:19:29] "GET /.well-known/acme-challenge/tSXffOByr_HF5V-6Xcyrea4xFj0rb-p3DoqO726FfzM HTTP/1.1" 200 -
esxi.mydomain.com verified!
Signing certificate...
Certificate signed!
Success: Obtained and installed a certificate from Let's Encrypt.
logger: Invalid PID 'Usage: fsvmsockrelay '
logger: Invalid PID '{start|stop|status|restart} [--vmci VMCI_ID]'
hostd signalled.
watchdog-lsud[2150450]: Terminating watchdog process with PID 2150084
lsud stopped
lsud started
VMware HTTP reverse proxy signalled.
sfcbd-init[2150532]: args ('')
sfcbd-init[2150532]: Getting Exclusive access, please wait...
sfcbd-init[2150532]: Exclusive access granted.
sfcbd-init[2150543]: args ('ssl_reset')
sfcbd-init[2150543]: Getting Exclusive access, please wait...
sfcbd-init[2150543]: Exclusive access granted.
sfcbd-init[2150543]: sfcbd is not running.
logger: Invalid PID 'Usage: vdfsd '
logger: Invalid PID '{start|stop|status|restart|'
vpxa signalled.
vsanperfsvc is not running.
/etc/init.d/vvold ssl_reset, PID 2150652
vvold is not running.

Looks like a typo/bug somewhere with the Invalid PID lines?

Anyways, it's all working today. Thank you so much!

from letsencrypt-esxi.

Churro avatar Churro commented on August 23, 2024

Regarding ESXi ESXi-6.7.0-20220704001-standard:

Let's Encrypt usually retrieves the challenge multiple times from different servers, so you should see multiple log lines like: 127.0.0.1 - - [25/Aug/2022 17:41:28] "GET /.well-known/acme-challenge/Te4bgquHPUCMnn6JbLsknwR4CmG9GXFnaxJceNRo2gk HTTP/1.1" 200 -

I'd assume you see 400 Bad Request instead of a second log line because of a DNS-related issue on your end. Do you have an AAAA record set on your domain as well? Is the A record the only one? If yes and either of them doesn't point to the same target as the first A record, you may see the error as you do.

Regarding ESXi-7.0U3f-20036589-standard:

What's the log output there? Did you have a certificate afterwards? It may have been issued while Remote end closed connection without response was written to stdout. Message: Host is not changed. is expected output if the package was successfully installed. Please also check https://github.com/w2c/letsencrypt-esxi/wiki/Troubleshooting#no-lets-encrypt-certificate-after-installation

from letsencrypt-esxi.

war59312 avatar war59312 commented on August 23, 2024

I plan to take another look at this...

But.. Just had my system crash. Not sure why yet, just happened and now after boot up I can't access the web console.

OK fixed.

Noticed new rui.crt and rui.key was created in last few mins and bad self signed.

  1. I deleted /etc/vmware/ssl/rui.crt and etc/vmware/ssl/rui.key

  2. Then ran generate-certificates which re-created the self signed cert key.

  3. Restarted services via /sbin/services.sh restart and now web console back online as expected.

from letsencrypt-esxi.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.