Home Assistant Community

Let's Encrypt: Revoke or re-issue new certificate after changing host name!

#1

Greetings!

I was trying to avoid posting here but alas I am stuck and haven’t been able to find much information posted on the topic.

I originally setup HA to use duckdns and lets encryption certificate. But recently change HA to use my own domain. After changing the configuration I attempted to start the let’s encrypt addon with the details of my own domain however I keep getting the log message that my certificate is valid until a date almost 3 months in the future.

Saving debug log to /var/log/letsencrypt/letsencrypt.log
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /data/letsencrypt/renewal/hass.home.mrlb.com.au.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Cert not yet due for renewal
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
The following certs are not due for renewal yet:

  • /data/letsencrypt/live/hass.home.mrlb.com.au/fullchain.pem expires on 2019-08-03 (skipped)*
    No renewals were attempted.

I have attempted to delete the fullchain.pem and privkey.pem in /ssl via samba. However after I run the lets encrypt addon it recreates these files with the current date/time.

The logs mentioned the fullchain.pem located in another location /data/letsencrypt/live/hass.home.mrlb.com.au/fullchain.pem however when I SSH to hassio via root login the directory /data/letsencrypt either is hidden or does not exist. I thought I would attempt to delete this file.

I have read certbot can be used to revoke / renew certificates with HA however I believe this may not be a feature of hassio.

I’d really appreciate some pointers if anyone has any.

Many thanks.

#2

I find it strange now one else has had the issue before.
I might do a backup, re-install hass, then restore everything but SSL then try again.