HTTPD down after failed let's encrypt didn't restart itself

1 post / 0 new
#1 Tue, 01/29/2019 - 03:07
Jfro

HTTPD down after failed let's encrypt didn't restart itself

Webmin version 1.900 Usermin version 1.751 Virtualmin version 6.05 Authentic theme version 19.22 CentOS 7x latest Apache

A let's encrypt autorenew failure , then httpd down with error

AH00526: Syntax error on line 1232 of /etc/httpd/conf/httpd.conf.
SSLCACertificateFile: file '/var/www/html/mydomain.tld/ssl.ca' does not exist or is empty

That line is where the SSLCACertificateFile line is and should

Short after this the let's encrypt succeeded succesfull

So can't find wich text was on that line at the time of error. Then mainproblem is: But httpd didn't restart itself

So first don't know why let's encrypt fails one time ( didn't before) Must have then problem with the SSLCACertificateFile line while httpd down for that line / error

Then the same Minute LE succeeded succesfull.

The SSLCACertificateFile line is again ok, but no restart of the down httpd?

An error occurred requesting a new certificate for mydomain.tld, www.mydomain.tld, autoconfig.mydomain.tld, autodiscover.mydomain.tld, mail.mydomain.tldl from Let's Encrypt : Web-based validation failed : Failed to request certificate : <pre>mail.mydomain.tld challenge did not pass: Invalid response from http://mail.mydomain.tld/.well-known/acme-challenge/eeugY50iSkNqTPDJ82kICYC6DoWihHkho: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">\n<html><head>\n<title>404 Not Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p"</pre>
DNS-based validation failed : Failed to request certificate : <pre>Gave up waiting for validation</pre>

After this same Minute

A new certificate was successfully requested from Let's Encrypt, and installed for mydomain.tld, www.mydomain.tld, autoconfig.mydomain.tld, autodiscover.mydomain.tld, mail.mydomain.tld.

It is therefore important to catch the problem because httpd is down and stay's down, have to start it manually!

Domain is over a year active with LE CERT in Virtualmin! ipv6 and ipv4 need them both!.

Not and never using certbot only the virtualmin LE cert procedure.