打印

lnmp1.5 生成通配符ssl问题!

lnmp1.5 生成通配符ssl问题!

生成证书出现问题后 再次生成出现如下提示:
复制内容到剪贴板
代码:
Create new order error. Le_OrderFinalize not found. {"type":"urn:ietf:params:acme:error:malformed","detail":"Error creating new order :: Domain name \"www.xxx.com\" is redundant with a wildcard domain in the same request. Remove one or the other from the certificate request.","status": 400}
下面是acme日志
复制内容到剪贴板
代码:
[Thu Apr 26 23:10:11 CST 2018] _main_domain='www.xxx.com'
[Thu Apr 26 23:10:11 CST 2018] _alt_domains='xxx.com,*.xxx.com'
[Thu Apr 26 23:10:11 CST 2018] Using config home:/usr/local/acme.sh
[Thu Apr 26 23:10:11 CST 2018] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Thu Apr 26 23:10:11 CST 2018] DOMAIN_PATH='/usr/local/nginx/conf/ssl/www.xxx.com'
[Thu Apr 26 23:10:11 CST 2018] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Thu Apr 26 23:10:11 CST 2018] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Thu Apr 26 23:10:11 CST 2018] GET
[Thu Apr 26 23:10:11 CST 2018] url='https://acme-v02.api.letsencrypt.org/directory'
[Thu Apr 26 23:10:11 CST 2018] timeout=
[Thu Apr 26 23:10:11 CST 2018] _CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header  -g '
[Thu Apr 26 23:10:11 CST 2018] ret='0'
[Thu Apr 26 23:10:12 CST 2018] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Thu Apr 26 23:10:12 CST 2018] ACME_NEW_AUTHZ
[Thu Apr 26 23:10:12 CST 2018] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Thu Apr 26 23:10:12 CST 2018] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Thu Apr 26 23:10:12 CST 2018] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Thu Apr 26 23:10:12 CST 2018] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Thu Apr 26 23:10:12 CST 2018] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Thu Apr 26 23:10:12 CST 2018] ACME_VERSION='2'
[Thu Apr 26 23:10:12 CST 2018] _on_before_issue
[Thu Apr 26 23:10:12 CST 2018] _chk_main_domain='www.xxx.com'
[Thu Apr 26 23:10:12 CST 2018] _chk_alt_domains='xxx.com,*.xxx.com'
[Thu Apr 26 23:10:12 CST 2018] Le_LocalAddress
[Thu Apr 26 23:10:12 CST 2018] d='www.xxx.com'
[Thu Apr 26 23:10:12 CST 2018] Check for domain='www.xxx.com'
[Thu Apr 26 23:10:12 CST 2018] _currentRoot='dns_dp'
[Thu Apr 26 23:10:12 CST 2018] d='xxx.com'
[Thu Apr 26 23:10:12 CST 2018] Check for domain='xxx.com'
[Thu Apr 26 23:10:12 CST 2018] _currentRoot='dns_dp'
[Thu Apr 26 23:10:12 CST 2018] d='*.xxx.com'
[Thu Apr 26 23:10:12 CST 2018] Check for domain='*.xxx.com'
[Thu Apr 26 23:10:12 CST 2018] _currentRoot='dns_dp'
[Thu Apr 26 23:10:12 CST 2018] d
[Thu Apr 26 23:10:12 CST 2018] _saved_account_key_hash is not changed, skip register account.
[Thu Apr 26 23:10:12 CST 2018] Read key length:
[Thu Apr 26 23:10:12 CST 2018] Creating domain key
[Thu Apr 26 23:10:12 CST 2018] Use DEFAULT_DOMAIN_KEY_LENGTH=2048
[Thu Apr 26 23:10:12 CST 2018] Using config home:/usr/local/acme.sh
[Thu Apr 26 23:10:12 CST 2018] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Thu Apr 26 23:10:12 CST 2018] Use length 2048
[Thu Apr 26 23:10:12 CST 2018] Using RSA: 2048
[Thu Apr 26 23:10:12 CST 2018] The domain key is here: /usr/local/nginx/conf/ssl/www.xxx.com/www.xxx.com.key
[Thu Apr 26 23:10:12 CST 2018] _createcsr
[Thu Apr 26 23:10:12 CST 2018] Multi domain='DNS:www.xxx.com,DNS:xxx.com,DNS:*.xxx.com'
[Thu Apr 26 23:10:12 CST 2018] Getting domain auth token for each domain
[Thu Apr 26 23:10:12 CST 2018] d='xxx.com'
[Thu Apr 26 23:10:12 CST 2018] d='*.xxx.com'
[Thu Apr 26 23:10:12 CST 2018] d
[Thu Apr 26 23:10:12 CST 2018] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Thu Apr 26 23:10:12 CST 2018] payload='{"identifiers": [{"type":"dns","value":"www.xxx.com"},{"type":"dns","value":"xxx.com"},{"type":"dns","value":"*.xxx.com"}]}'
[Thu Apr 26 23:10:12 CST 2018] RSA key
[Thu Apr 26 23:10:12 CST 2018] HEAD
[Thu Apr 26 23:10:12 CST 2018] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Thu Apr 26 23:10:12 CST 2018] _CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header  -g '
[Thu Apr 26 23:10:12 CST 2018] _ret='0'
[Thu Apr 26 23:10:12 CST 2018] POST
[Thu Apr 26 23:10:12 CST 2018] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Thu Apr 26 23:10:12 CST 2018] _CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header  -g '
[Thu Apr 26 23:10:13 CST 2018] _ret='0'
[Thu Apr 26 23:10:13 CST 2018] code='400'
[Thu Apr 26 23:10:13 CST 2018] Le_OrderFinalize
[Thu Apr 26 23:10:13 CST 2018] Create new order error. Le_OrderFinalize not found. {"type":"urn:ietf:params:acme:error:malformed","detail":"Error creating new order :: Domain name \"www.xxx.com\" is redundant with a wildcard domain in the same request. Remove one or the other from the certificate request.","status": 400}
[Thu Apr 26 23:10:13 CST 2018] pid
[Thu Apr 26 23:10:13 CST 2018] No need to restore nginx, skip.
[Thu Apr 26 23:10:13 CST 2018] _clearupdns
[Thu Apr 26 23:10:13 CST 2018] skip dns.
[Thu Apr 26 23:10:13 CST 2018] _on_issue_err
[Thu Apr 26 23:10:13 CST 2018] Please check log file for more details: /usr/local/acme.sh/acme.sh.log

TOP

回复 1# 的帖子

生成通配符域名证书不要加带www的域名

LNMP付费问题排查/LNMP技术支持/Paypal信用卡代付/代购VPS,域名,软件等 QQ 503228080 旺旺 lzhenbao
军哥淘宝店铺
QQ/旺旺仅提供代购及付费代维/问题解决等服务,其他不回复!LNMP相关问题请在本论坛发帖,提问前先搜索,按https://bbs.vpser.net/thread-2555-1-1.html 要求反馈问题!

TOP

回复 2# 的帖子

还有个问题就是为已存在的网站申请系统会新建2个server段。。。是否优化下

TOP