Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


    Cloudron Forum

    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    Solved DigitalOcean DNS & Let's Encrypt Wildcard Certs - Error Cert Expired?

    Support
    mail certificates
    2
    5
    226
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • humptydumpty
      humptydumpty last edited by girish

      I got an email from my freescout install that my cert for the *.mydomain.com (wildcard) has expired and it cannot fetch any new mail. I also can't fetch using the Mail app on iOS.

      If I visit my mail server at mail.mydomain.com (dummy link), the cert expiration shows July 2nd so I'm confused on what to do now.

      I found a dead link when visiting the CR Docs at https://docs.cloudron.io/certificates/#wildcard-certificate and then clicking on "this tutorial" which supposedly shows the correct way of setting up wildcard certs to include both the bare and wildcard domains.

      Suggestions?

      Thanks in advance!

      girish 1 Reply Last reply Reply Quote 0
      • girish
        girish Staff @humptydumpty last edited by

        @humptydumpty If you go to Services -> Mail -> Restart, it will copy over the latest certs. There is some bug that when certs are renewed the mail server is not updated with the latest certs. We are still trying to understand what causes this issue.

        humptydumpty 2 Replies Last reply Reply Quote 0
        • humptydumpty
          humptydumpty @girish last edited by

          @girish I hopped back on to say that restarting the mail service fixed the issue. I issued a server restart earlier but that didn't work for some reason. Thanks Girish!

          girish 1 Reply Last reply Reply Quote 0
          • humptydumpty
            humptydumpty @girish last edited by

            @girish I think this is the first cert renewal after I had switched the DNS to DO. It was set to manual before. Maybe that was the cause..

            1 Reply Last reply Reply Quote 0
            • girish
              girish Staff @humptydumpty last edited by

              @humptydumpty Yes, correct. Server restart won't fix the issue, have to restart the service explicitly (since it copies over certs).

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Powered by NodeBB