LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   how to symlink (https://www.linuxquestions.org/questions/linux-newbie-8/how-to-symlink-4175698501/)

awaismalik 07-30-2021 07:26 AM
how to symlink
 
During the migration of webserver i copied the letsencrypt file to new web server. after running the command 'certbot renew --dry-run' i am getting following error.

# certbot renew --dry-run
Saving debug log to /var/log/letsencrypt/letsencrypt.log

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/website.com.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/certbot/renewal.py", line 68, in _reconstitute
renewal_candidate = storage.RenewableCert(full_path, config)
File "/usr/lib/python3/dist-packages/certbot/storage.py", line 463, in __init__
self._check_symlinks()
File "/usr/lib/python3/dist-packages/certbot/storage.py", line 522, in _check_symlinks
"expected {0} to be a symlink".format(link))
certbot.errors.CertStorageError: expected /etc/letsencrypt/live/website.com/cert.pem to be a symlink
Renewal configuration file /etc/letsencrypt/renewal/website.com.conf is broken. Skipping.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/www.website.fr.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/certbot/renewal.py", line 68, in _reconstitute
renewal_candidate = storage.RenewableCert(full_path, config)
File "/usr/lib/python3/dist-packages/certbot/storage.py", line 463, in __init__
self._check_symlinks()
File "/usr/lib/python3/dist-packages/certbot/storage.py", line 522, in _check_symlinks
"expected {0} to be a symlink".format(link))
certbot.errors.CertStorageError: expected /etc/letsencrypt/live/www.website.fr/cert.pem to be a symlink
Renewal configuration file /etc/letsencrypt/renewal/www.website.fr.conf is broken. Skipping.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
** DRY RUN: simulating 'certbot renew' close to cert expiry
** (The test certificates below have not been saved.)

No renewals were attempted.

Additionally, the following renewal configurations were invalid:
/etc/letsencrypt/renewal/website.com.conf (parsefail)
/etc/letsencrypt/renewal/www.website.fr.conf (parsefail)
** DRY RUN: simulating 'certbot renew' close to cert expiry
** (The test certificates above have not been saved.)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
0 renew failure(s), 2 parse failure(s)
root@h2945112:~# certbot update_symlinks
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Expected /etc/letsencrypt/live/website.com/cert.pem to be a symlink

I know that symlink can be done by 'ln -sf' but i do not know what should be in source file and symlink file ?

ln -s source_file symbolic_link

bathory 07-30-2021 07:52 AM
Hi,

With letsebcrypt, everything under /etc/letsencrypt/live/website.com/ is symlinked to the latest certs located in /etc/letsencrypt/archive/website.com.
So if you want to renew your certificate(s), delete everything under /etc/letsencrypt/live/website.com/, run certbot and let it fetch the newer certs and create the necessary symlinks.

Regards

awaismalik 07-30-2021 08:14 AM
Thanks. I found the same solution here https://charles-stover.medium.com/fi...l-1e7718f8a492


All times are GMT -5. The time now is 09:15 AM.