Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Brite
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum
Apps - Status | Demo | Docs | Install
  1. Cloudron Forum
  2. AdGuard Home
  3. AdGuard Alias Cert not renewed

AdGuard Alias Cert not renewed

Scheduled Pinned Locked Moved AdGuard Home
6 Posts 2 Posters 37 Views 2 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • A Offline
    A Offline
    andreasb
    wrote last edited by andreasb
    #1
    • I'm running Adguard Home to support DoT/DoH for Clients
    • limiting DNS to allowed clients is setup via Cloud Firewall, not within Adguard, ports 53 + 853 there are open for selected source IPs
    • adding a new alias for a dedicated client ('client1.gate') works and a valid cert is deployed in /etc/certs within AdGuard docker container
    • after some configuration changes and tests, I've been (again) adding the alias *.gate.mydomain.tld, which has been existing before and been removed again
      => creating the alias in Cloudron UI does not throw any error
      => however, an expired cert is used: when now accessing the AdGuard UI, an error message is visible on top saying
      58438ab0-45d6-4fd4-8476-3dfb38f4b4b4-image.jpeg
      =>I then renewed all certs via Cloudron Domain Mgmt, and regarding *.gate.mydomain.tld, the corresponding renewal log shows
    2026-04-30T12:04:23.234Z reverseproxy: ensureCertificate: error: no http challenges

    Am I facing the issue @girish described here?
    Any idea how to fix this?

    Thx in advance!

    1 Reply Last reply
    1
    • jamesJ Offline
      jamesJ Offline
      james
      Staff
      wrote last edited by
      #2

      Hello @andreasb
      Please include the output of cloudron-support --troubleshoot.
      What DNS provider are you using?

      1 Reply Last reply
      0
      • A Offline
        A Offline
        andreasb
        wrote last edited by andreasb
        #3

        Hi @james

        • 'cloudron-support --troubleshoot' did not throw any error
          8435791e-2007-4ee4-aee7-021f37dcc2c2-image.jpeg
        • DNS is not automated for this Cloudron, all entries are set manually at the registrar's web UI
          Does that help?

        ps all other app certs seem to be renewed correctly, I haven't observed any issues here

        1 Reply Last reply
        0
        • jamesJ Offline
          jamesJ Offline
          james
          Staff
          wrote last edited by
          #4

          Hello @andreasb
          Please don't post pictures of copy-pasteable text.
          With that you exclude our blind / visual impaired users.

          @andreasb said:

          DNS is not automated for this Cloudron, all entries are set manually at the registrar's web UI
          Does that help?

          That is the issue. With a manual DNS provider, you can not get a DNS challenge.
          Only with a DNS challenge you can get wildcard certificates.
          This is causing your issues. You should switch to a supported DNS provider.

          A 1 Reply Last reply
          1
          • jamesJ james

            Hello @andreasb
            Please don't post pictures of copy-pasteable text.
            With that you exclude our blind / visual impaired users.

            @andreasb said:

            DNS is not automated for this Cloudron, all entries are set manually at the registrar's web UI
            Does that help?

            That is the issue. With a manual DNS provider, you can not get a DNS challenge.
            Only with a DNS challenge you can get wildcard certificates.
            This is causing your issues. You should switch to a supported DNS provider.

            A Offline
            A Offline
            andreasb
            wrote last edited by
            #5

            @james said:

            Please don't post pictures of copy-pasteable text.

            ok

            1 Reply Last reply
            1
            • A Offline
              A Offline
              andreasb
              wrote last edited by
              #6

              Hi @james
              now switched to Hetzner Cloud DNS, and the renewal worked. Thanks!

              Having used the manual wildcard config forever, I however still don't understand, how the first set of certs had been issued, that expired back in February.

              1 Reply Last reply
              1

              Hello! It looks like you're interested in this conversation, but you don't have an account yet.

              Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.

              With your input, this post could be even better 💗

              Register Login
              Reply
              • Reply as topic
              Log in to reply
              • Oldest to Newest
              • Newest to Oldest
              • Most Votes

              • Login
              • Don't have an account? Register
              • Login or register to search.
              • First post
                Last post
              0
              • Categories
              • Recent
              • Tags
              • Popular
              • Bookmarks
              • Search