When trying to access our Seatable installation (DE Latest) today I got warning that the page is unsafe and saw that the Let’s Encrypt certificate has expired. This has never happened before and the installation is running for more than a year now. However I tried to follow the manual and was able to find and run the renew_cert.sh command. The renewal didn’t succeed though with the error message: 'our_domain.com' is not an issued domain, skip.
I have no idea how to fix this issue. Can anybody point me in the right direction please!?
Hi, this is due to the DST root ca x3 expiration in September 2021. If you haven’t updated your certificate after that, you should do it now. See the article below for more information:
Can I provide any logs (if so, which ones) or further information to get this fixed? As far as I understand we did everything that was explained in the manual and also are on the latest version of DE as suggested. With my limited expertise in CertBot, Docker and Nginx I’m helplessly and desperately relying on external input to get this running again. Right now all our corporate customers are locked out of the platform as nobody is allowed to override security warnings related to encryption.
I tried to renew my cert today (which I have done several times in the past, due to my configuration I need to do it manually) and, the renewal script didn’t work for me this time. I get this output:
> root@7ee714a688c8:/opt/seatable# /templates/renew_cert.sh
> > [Tue Dec 7 15:25:32 MST 2021] Lets find script dir.
> > [Tue Dec 7 15:25:32 MST 2021] _SCRIPT_='/root/.acme.sh/acme.sh'
> > [Tue Dec 7 15:25:32 MST 2021] _script='/root/.acme.sh/acme.sh'
> > [Tue Dec 7 15:25:32 MST 2021] _script_home='/root/.acme.sh'
> > [Tue Dec 7 15:25:32 MST 2021] Using config home:/opt/ssl/
> > https://github.com/acmesh-official/acme.sh
> > v3.0.2
> > [Tue Dec 7 15:25:32 MST 2021] Running cmd: renew
> > [Tue Dec 7 15:25:32 MST 2021] Using config home:/opt/ssl/
> > [Tue Dec 7 15:25:32 MST 2021] config file is empty, can not read DEFAULT_ACME_SERVER
> > [Tue Dec 7 15:25:32 MST 2021] default_acme_server
> > [Tue Dec 7 15:25:32 MST 2021] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
> > [Tue Dec 7 15:25:32 MST 2021] DOMAIN_PATH='/opt/ssl//MYDOMAIN.ca'
> > [Tue Dec 7 15:25:32 MST 2021] Renew: 'MYDOMAIN.ca'
> > [Tue Dec 7 15:25:32 MST 2021] 'MYDOMAIN.ca' is not an issued domain, skip.
I am on the latest version of the self-hosted docker, enterprise edition.