Not sure if this is just my configuration, or whether its a wider problem. I have a domain on my Hestia server. The website SSL cert renews fine, but I just got an email warning from Letsencrypt telling me that the webmail.domain.com and mail.domain.com certificates were going to expire.
I tested them and the information was correct. They were going to expire in 20 days.
cat domain.com.crt | openssl x509 -noout -dates
Not an emergency, but shouldn’t they be auto-renewing, along with the web domain certs, which were created at the same time?
I went into control panel, edit mail domain, and removed SSL, and then added it in again. I got this message, and the cert refused to update.
Error: Let’s Encrypt validation status 400. Details: Unable to update challenge :: authorization must be pending
So it seems that this might be why the certs refused to auto-renew as well? Any ideas what’s going on? (At the moment no SSL on that mail domain, although I guess I could pull the certs out of a backup.)