[Mdaemon-L] Error Retrieving Certificate

2023-07-11 Terurut Topik Syafril Hermansyah via Mdaemon-L 
Pada 12 Juli 2023 06.33.00 GMT+03:00, Bambang Setiawan via Mdaemon-L 
 menulis:
>

>> Periksa apakah webmail accept http dan https
>Pilihan yang saya aktifkan ini pak
>
>[x] HTTP redirect to HTTPS
>
>> kalau new SSL Certificate memang belum terbentuk
>
>Ini sudah saya buat pak
>
>> run Let's Encrypt script
>> 
>> klik "Run Now"
>
>Pada saat saya click run now, muncul kembali notifikasi email yang sebelumnya 
>saya sampaikan dari postmaster pak


New SSL certificate sudah terbentuk,hanya old key tidak terhapus.
Tidak fatal, new certificate sudah berjalan.

-- 
syafril
--
Syafril Hermansyah

Dikirim dari perangkat Android saya menggunakan K-9 Mail.

--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.2

[Mdaemon-L] Error Retrieving Certificate

2023-07-11 Terurut Topik Bambang Setiawan via Mdaemon-L 


On 12/07/2023 10:21, Syafril Hermansyah via Mdaemon-L wrote:


Periksa apakah webmail accept http dan https

Pilihan yang saya aktifkan ini pak

[x] HTTP redirect to HTTPS


kalau new SSL Certificate memang belum terbentuk


Ini sudah saya buat pak


run Let's Encrypt script

klik "Run Now"


Pada saat saya click run now, muncul kembali notifikasi email yang 
sebelumnya saya sampaikan dari postmaster pak



Salam

--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.2

[Mdaemon-L] Error Retrieving Certificate

2023-07-11 Terurut Topik Syafril Hermansyah via Mdaemon-L 



On July 12, 2023 5:26:03 AM GMT+03:00, Bambang Setiawan via Mdaemon-L 
 wrote:

>Pagi ini saya mendapatkan email dari postmaster seperti ini :
>
>An error occurred during the LetsEncrypt process. The error message is: 
>Creating new certificate.
>
>Mohon bantuan/arahan Bapak bagaimana saya harus melakukan pengecekannya.

Periksa apakah webmail accept http dan https


http://mdaemon.dutaint.co.id/mdaemon/23.0.1/ssl_worldclient.html

Accept the Following Connection Types
[x] HTTP and HTTPS

kalau new SSL Certificate memang belum terbentuk

http://mdaemon.dutaint.co.id/mdaemon/23.0.1/ssl_mdaemon.html

run Let's Encrypt script

http://mdaemon.dutaint.co.id/mdaemon/23.0.1/ssl_lets-encrypt.html

klik "Run Now"


-- 
syafril
--
Syafril Hermansyah

Sent from my Android device with K-9 Mail. Please excuse my brevity.

--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.2

[Mdaemon-L] Error Retrieving Certificate

2023-07-11 Terurut Topik Bambang Setiawan via Mdaemon-L 

Dear Pak Syafril.


Pagi ini saya mendapatkan email dari postmaster seperti ini :

An error occurred during the LetsEncrypt process. The error message is: 
Creating new certificate.



Mohon bantuan/arahan Bapak bagaimana saya harus melakukan pengecekannya.


Terima kasih

--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 23.0.2, SecurityGateway 9.0.2

[Mdaemon-L] Error Retrieving Certificate Let's Encrypt ACME V2

2022-08-02 Terurut Topik Syafril Hermansyah via Mdaemon-L 

On 8/3/22 10:08, Sony via Mdaemon-L wrote:

Namun masih jadi pertanyaan saya terkait log sebelumnya yang tertulis:


Looking for the local certificate.
I found a certifcate from LetsEncrypt.
The certificate is still valid for 30 days.
Host names: smtp.richtex.co.id imap.richtex.co.id pop3.richtex.co.id 
>mail.richtex.co.id Certificate host names: imap.richtex.co.id 
mail.richtex.co.id pop3.richtex.co.id smtp.richtex.co.id
The list of alternate host names has not changed.
A new certificate is not being requested.



Apakah artinya proses auto renew certificate after 60 days sesuai settingan 
dapat berjalan hanya bila terdapat certificate valid yang akan expired dalam 30 
hari kedepan?



Ya, mestinya begitu.


Seingat saya sebelumnya pernah create ulang (klik run di halaman lets encrypt) 
diluar auto renew dan berhasil walaupun masih ada certificate yang valid lebih 
dari 30 hari namun lupa di versi MDaemon berapa.



Mungkin saat masih pakai MD lama yang masih pakai ACME v1.

--
syafril

Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 22.0.2
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

It is not that I'm so smart. But I stay with the questions much longer.
--- Albert Einstein


--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 22.0.2, SecurityGateway 8.5.3

[Mdaemon-L] Error Retrieving Certificate Let's Encrypt ACME V2

2022-08-02 Terurut Topik Sony via Mdaemon-L 
Pak Syafril,

Namun masih jadi pertanyaan saya terkait log sebelumnya yang tertulis:

>Looking for the local certificate.
>I found a certifcate from LetsEncrypt.
>The certificate is still valid for 30 days.
>Host names: smtp.richtex.co.id imap.richtex.co.id pop3.richtex.co.id 
>>mail.richtex.co.id Certificate host names: imap.richtex.co.id 
>mail.richtex.co.id pop3.richtex.co.id smtp.richtex.co.id 
>The list of alternate host names has not changed.
>A new certificate is not being requested.

Apakah artinya proses auto renew certificate after 60 days sesuai settingan 
dapat berjalan hanya bila terdapat certificate valid yang akan expired dalam 30 
hari kedepan?
Sesuai log auto renew certificate yang berhasil sebelumnya:

Starting Script run at 06/18/2022 00:00:56.
Get the MDaemon paths.
The MDaemon.ini Path is D:\MDaemon\App\MDaemon.ini.
The MDaemon APP Path is D:\MDaemon\App\.
The MDaemon Pem path is D:\MDaemon\PEM\.
The MDaemon Log path is D:\MDaemon\Logs\.
The MDaemon RAW path is D:\MDaemon\Queues\Raw\.
The WorldClient Path is D:\MDaemon\WorldClient.
The WorldClient HTML Path is D:\MDaemon\WorldClient\HTML.
The well-known path is D:\MDaemon\WorldClient\HTML\.well-known.
The Acme-Challenge path is 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge.
The State Path is D:\MDaemon\PEM\_LEState.
The FQDN is set to mail.richtex.co.id.
The email address is set to postmas...@mail.richtex.co.id.
Setting the system to use the LetsEncrypt Live Service.
The certificate thumbrpint in the MDaemon.ini file is 6D7C 94CB 87D0 6AC5 F96B 
AE71 6A8A 4FD3 95EA 5250.
Looking for the local certificate.
I found a certifcate from LetsEncrypt.
The certificate is going to expire in the next 30 days, requesting a new 
certificate.
Importing the ACMESharp module.
Getting an updated state.
The account is setup and the status is valid.
Getting an updated state.
Getting service directory.
Getting a new Nonce
Getting identifier for smtp.richtex.co.id.
Getting identifier for smtp.richtex.co.id.
Getting identifier for imap.richtex.co.id.
Getting identifier for imap.richtex.co.id.
Getting identifier for pop3.richtex.co.id.
Getting identifier for pop3.richtex.co.id.
Getting identifier for mail.richtex.co.id.
Getting identifier for mail.richtex.co.id.
Creating new certificate.
Creating a new order for mail.richtex.co.id using dns:smtp.richtex.co.id 
dns:imap.richtex.co.id dns:pop3.richtex.co.id dns:mail.richtex.co.id
Getting an updated state.
Getting service directory.
Getting an authorization for the dns:imap.richtex.co.id dns:mail.richtex.co.id 
dns:pop3.richtex.co.id dns:smtp.richtex.co.id.
Getting service directory.
Getting an updated state.
The .well-known path for is D:\MDaemon\WorldClient\HTML\.well-known
The Acme Challenge path for 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge
Selecting the http-01 challenge and getting challenge data for 
dns:imap.richtex.co.id.
The challenge status URL is 
https://acme-v02.api.letsencrypt.org/acme/chall-v3/120692124106/yjMFRQ.
The challenge identifier is dns:imap.richtex.co.id.
The URL to verify the challenge is 
imap.richtex.co.id/.well-known/acme-challenge/lXmSB9T7ndTkThmLCJlTr7n8qIo4d7RBRuuhk7W85UY.
The Challenge file name for dns:imap.richtex.co.id is 
lXmSB9T7ndTkThmLCJlTr7n8qIo4d7RBRuuhk7W85UY
The Challenge Content for dns:imap.richtex.co.id is 
lXmSB9T7ndTkThmLCJlTr7n8qIo4d7RBRuuhk7W85UY.QlcAgJ76c4PE0SIMODaAIWbJX2IuxUJFVTmZCTyXQOM
Creating 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge\lXmSB9T7ndTkThmLCJlTr7n8qIo4d7RBRuuhk7W85UY
 for dns:imap.richtex.co.id.
Submitting the ACME challenge for dns:imap.richtex.co.id for verification.
Selecting the http-01 challenge and getting challenge data for 
dns:mail.richtex.co.id.
The challenge status URL is 
https://acme-v02.api.letsencrypt.org/acme/chall-v3/120692124116/oW8yUQ.
The challenge identifier is dns:mail.richtex.co.id.
The URL to verify the challenge is 
mail.richtex.co.id/.well-known/acme-challenge/pCziXl8fsQgfS-w2cjUKFzsTPNYcbE5cRBYPk_fHZtg.
The Challenge file name for dns:mail.richtex.co.id is 
pCziXl8fsQgfS-w2cjUKFzsTPNYcbE5cRBYPk_fHZtg
The Challenge Content for dns:mail.richtex.co.id is 
pCziXl8fsQgfS-w2cjUKFzsTPNYcbE5cRBYPk_fHZtg.QlcAgJ76c4PE0SIMODaAIWbJX2IuxUJFVTmZCTyXQOM
Creating 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge\pCziXl8fsQgfS-w2cjUKFzsTPNYcbE5cRBYPk_fHZtg
 for dns:mail.richtex.co.id.
Submitting the ACME challenge for dns:mail.richtex.co.id for verification.
Selecting the http-01 challenge and getting challenge data for 
dns:pop3.richtex.co.id.
The challenge status URL is 
https://acme-v02.api.letsencrypt.org/acme/chall-v3/120692124126/Z-S9KA.
The challenge identifier is dns:pop3.richtex.co.id.
The URL to verify the challenge is 
pop3.richtex.co.id/.well-known/acme-challenge/mM-EMvnIRgJQ8h2-tiPePQ3RDAvQ19FoyTBfDAkf6mM.
The Challenge file name for dns:pop3.richtex.co.id is 
mM-EMvnIRgJQ8h2-tiPePQ3RDAvQ19FoyTBfDAkf6mM
The Challenge Content for dns:pop3.richtex.co.id is 
mM-EMvnIRgJQ8h2-tiPePQ3

[Mdaemon-L] Error Retrieving Certificate Let's Encrypt ACME V2

2022-08-02 Terurut Topik Sony via Mdaemon-L 
Pak Syafril,

Setelah saya coba trial error ekspor certificate valid ke .pfx untuk backup dan 
kemudian delete dari list SSL lalu create ulang menggunakan let's encrypt 
ternyata berhasil.

berikut lognya:

Starting Script run at 08/03/2022 09:33:10.
Get the MDaemon paths.
The MDaemon.ini Path is D:\MDaemon\APP\MDaemon.ini.
The MDaemon APP Path is D:\MDaemon\APP\.
The MDaemon Pem path is D:\MDaemon\PEM\.
The MDaemon Log path is D:\MDaemon\Logs\.
The MDaemon RAW path is D:\MDaemon\Queues\Raw\.
The WorldClient Path is D:\MDaemon\WorldClient.
The WorldClient HTML Path is D:\MDaemon\WorldClient\HTML.
The well-known path is D:\MDaemon\WorldClient\HTML\.well-known.
The Acme-Challenge path is 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge.
The State Path is D:\MDaemon\PEM\_LEState.
The FQDN is set to mail.richtex.co.id.
The email address is set to postmas...@mail.richtex.co.id.
Setting the system to use the LetsEncrypt Live Service.
The certificate thumbrpint in the MDaemon.ini file is B5A5 E418 6DEC 35F9 B7CF 
B1F3 A4A7 EC95 0CE6 5945.
Looking for the local certificate.
The certificate is not from LetsEncrypt, requesting a new certificate.
Importing the ACMESharp module.
Getting an updated state.
The account either doesn't exist or is not valid. It will be deleted and 
recreated.
Creating a new AcmeState.
Getting service directory.
Getting a new Nonce
Creating a new Account Key.
Creating a new Account.
Getting an updated state.
Getting service directory.
Getting a new Nonce
Getting identifier for smtp.richtex.co.id.
Getting identifier for smtp.richtex.co.id.
Getting identifier for imap.richtex.co.id.
Getting identifier for imap.richtex.co.id.
Getting identifier for pop3.richtex.co.id.
Getting identifier for pop3.richtex.co.id.
Getting identifier for mail.richtex.co.id.
Getting identifier for mail.richtex.co.id.
Creating new certificate.
Creating a new order for mail.richtex.co.id using dns:smtp.richtex.co.id 
dns:imap.richtex.co.id dns:pop3.richtex.co.id dns:mail.richtex.co.id
Getting an updated state.
Getting service directory.
Getting an authorization for the dns:imap.richtex.co.id dns:mail.richtex.co.id 
dns:pop3.richtex.co.id dns:smtp.richtex.co.id.
Getting service directory.
Getting an updated state.
The .well-known path for is D:\MDaemon\WorldClient\HTML\.well-known
The Acme Challenge path for 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge
The path D:\MDaemon\WorldClient\HTML\.well-known does not exist, it will be 
created.
The path D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge does not exist, 
it will be created.
Selecting the http-01 challenge and getting challenge data for 
dns:imap.richtex.co.id.
The challenge status URL is 
https://acme-v02.api.letsencrypt.org/acme/chall-v3/137694941186/m9UFwQ.
The challenge identifier is dns:imap.richtex.co.id.
The URL to verify the challenge is 
imap.richtex.co.id/.well-known/acme-challenge/HR3pgYAf4zOLP3BwipgDIZHZfr8bfNnzBQVUT8vrwDs.
The Challenge file name for dns:imap.richtex.co.id is 
HR3pgYAf4zOLP3BwipgDIZHZfr8bfNnzBQVUT8vrwDs
The Challenge Content for dns:imap.richtex.co.id is 
HR3pgYAf4zOLP3BwipgDIZHZfr8bfNnzBQVUT8vrwDs.b-AUUxxpkBAcRRwo8Y162_CQkzgSKeDvTUb115zS9UQ
Creating 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge\HR3pgYAf4zOLP3BwipgDIZHZfr8bfNnzBQVUT8vrwDs
 for dns:imap.richtex.co.id.
Submitting the ACME challenge for dns:imap.richtex.co.id for verification.
Selecting the http-01 challenge and getting challenge data for 
dns:mail.richtex.co.id.
The challenge status URL is 
https://acme-v02.api.letsencrypt.org/acme/chall-v3/137694941196/WSX1hg.
The challenge identifier is dns:mail.richtex.co.id.
The URL to verify the challenge is 
mail.richtex.co.id/.well-known/acme-challenge/Ihbq9Qu8zsnImpZT44m07DwpxYJz0YBT17Ni9YR7n_g.
The Challenge file name for dns:mail.richtex.co.id is 
Ihbq9Qu8zsnImpZT44m07DwpxYJz0YBT17Ni9YR7n_g
The Challenge Content for dns:mail.richtex.co.id is 
Ihbq9Qu8zsnImpZT44m07DwpxYJz0YBT17Ni9YR7n_g.b-AUUxxpkBAcRRwo8Y162_CQkzgSKeDvTUb115zS9UQ
Creating 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge\Ihbq9Qu8zsnImpZT44m07DwpxYJz0YBT17Ni9YR7n_g
 for dns:mail.richtex.co.id.
Submitting the ACME challenge for dns:mail.richtex.co.id for verification.
Selecting the http-01 challenge and getting challenge data for 
dns:pop3.richtex.co.id.
The challenge status URL is 
https://acme-v02.api.letsencrypt.org/acme/chall-v3/137694941206/8iAZiA.
The challenge identifier is dns:pop3.richtex.co.id.
The URL to verify the challenge is 
pop3.richtex.co.id/.well-known/acme-challenge/GUrwdEEYmpQFjEh_jKWjcJzxUw9ZYFZkL7VAAyjB8rQ.
The Challenge file name for dns:pop3.richtex.co.id is 
GUrwdEEYmpQFjEh_jKWjcJzxUw9ZYFZkL7VAAyjB8rQ
The Challenge Content for dns:pop3.richtex.co.id is 
GUrwdEEYmpQFjEh_jKWjcJzxUw9ZYFZkL7VAAyjB8rQ.b-AUUxxpkBAcRRwo8Y162_CQkzgSKeDvTUb115zS9UQ
Creating 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge\GUrwdEEYmpQFjEh_jKWjcJzxUw9ZYFZkL7VAAyjB8rQ
 for dns:pop3.richtex.co.id.
Submitting the ACME chal

[Mdaemon-L] Error Retrieving Certificate Let's Encrypt ACME V2

2022-08-02 Terurut Topik Sony via Mdaemon-L 
> > The FQDN is set to mail.richtex.co.id.
> > The email address is set to postmas...@mail.richtex.co.id.
> 
> 
> Kenapa Admin email di set postmas...@mail.richtex.co.id bukan
> postmas...@richtex.co.id?
> mail.richtex.co.id adalah nama host (host domain), kalau richtex.co.id
> adalah mail domain yang punya MX record/host.
> 

[Response:] Settingan saya tidak seperti itu pak, saya tidak pernah set 
postmas...@mail.richtex.co.id dimanapun.
Mengenai konfigurasi di halaman LetsEncrypt admin email menuju ke alamat email 
corporate saya pribadi dan postmas...@richtex.co.id adalah salah satu aliasnya.
Terbukti error message tersebut dapat saya terima dengan baik.

> 
> > The certificate is still valid for 30 days.
> 
> 
> Certificate yang ada masih valid untuk 30 hari, sehingga tidak action
> pergantian/update key.

[Response:] apakah bila saya pindah/hapus current valid certificate dapat 
create ulang lagi pak?
Tujuan saya hanya ingin memastikan bahwa tidak ada konfigurasi yang salah saat 
update otomatis after 60 days sesuai settingan current saya.

> 
> > Cleaning up old files.
> > Checking for PFX files that begin with mail.richtex.co.id and are older
> than 180 days in the D:\MDaemon\PEM\ directory.
> > Checking for files older than 180 days in the
> D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge directory.
> > Checking for certificates that expired more than 30 days ago The
> > script is stopping because an error occurred.
> 
> 
> Error ini tidak fatal, walau memang aneh tetapi tidak dijelaskan penyebab
> error persisnya.

[Response:] Noted pak.

> 
> Besar dugaan karena alternate host name tidak pakai separator koma (,)
> melainkan space.
> 
> > Host names: smtp.richtex.co.id imap.richtex.co.id pop3.richtex.co.id
> > mail.richtex.co.id Certificate host names: imap.richtex.co.id
> > mail.richtex.co.id pop3.richtex.co.id smtp.richtex.co.id

[Response:] Tidak pak, semua konfigurasi yang membutuhkan semacem script/text 
diluar backup file saya simpan di arsip txt pribadi untuk mempermudah 
konfigurasi ulang dan mengingat ubahan terakhir yang efektif. jadi script 
tersebut tetap menggunakan koma (,) sebagai separatornya sesuai petunjuk 
diatasnya.
Terbukti valid di MDaemon 21.5.2 saat certificate terakhir dibuat.

Terima kasih.


--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 22.0.2, SecurityGateway 8.5.3

[Mdaemon-L] Error Retrieving Certificate Let's Encrypt ACME V2

2022-08-02 Terurut Topik Syafril Hermansyah via Mdaemon-L 

On 8/3/22 07:54, Sony via Mdaemon-L wrote:

Berikan error lengkapnya yang tercatat di file letsencrypt log



The FQDN is set to mail.richtex.co.id.
The email address is set to postmas...@mail.richtex.co.id.



Kenapa Admin email di set postmas...@mail.richtex.co.id bukan 
postmas...@richtex.co.id?
mail.richtex.co.id adalah nama host (host domain), kalau richtex.co.id 
adalah mail domain yang punya MX record/host.




The certificate is still valid for 30 days.



Certificate yang ada masih valid untuk 30 hari, sehingga tidak action 
pergantian/update key.



Cleaning up old files.
Checking for PFX files that begin with mail.richtex.co.id and are older than 
180 days in the D:\MDaemon\PEM\ directory.
Checking for files older than 180 days in the 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge directory.
Checking for certificates that expired more than 30 days ago
The script is stopping because an error occurred.



Error ini tidak fatal, walau memang aneh tetapi tidak dijelaskan 
penyebab error persisnya.


Besar dugaan karena alternate host name tidak pakai separator koma (,) 
melainkan space.



Host names: smtp.richtex.co.id imap.richtex.co.id pop3.richtex.co.id 
mail.richtex.co.id
Certificate host names: imap.richtex.co.id mail.richtex.co.id 
pop3.richtex.co.id smtp.richtex.co.id





--
syafril

Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 22.0.2
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

A good scientist is a person with original ideas. A good engineer is a 
person who makes a design that works with as few original ideas as 
possible. There are no prima donnas in engineering.

--- Freeman Dyson



--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 22.0.2, SecurityGateway 8.5.3

[Mdaemon-L] Error Retrieving Certificate Let's Encrypt ACME V2

2022-08-02 Terurut Topik Sony via Mdaemon-L 
> Berikan error lengkapnya yang tercatat di file letsencrypt log

Starting Script run at 08/02/2022 16:17:31.
Get the MDaemon paths.
The MDaemon.ini Path is D:\MDaemon\APP\MDaemon.ini.
The MDaemon APP Path is D:\MDaemon\APP\.
The MDaemon Pem path is D:\MDaemon\PEM\.
The MDaemon Log path is D:\MDaemon\Logs\.
The MDaemon RAW path is D:\MDaemon\Queues\Raw\.
The WorldClient Path is D:\MDaemon\WorldClient.
The WorldClient HTML Path is D:\MDaemon\WorldClient\HTML.
The well-known path is D:\MDaemon\WorldClient\HTML\.well-known.
The Acme-Challenge path is 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge.
The State Path is D:\MDaemon\PEM\_LEState.
The FQDN is set to mail.richtex.co.id.
The email address is set to postmas...@mail.richtex.co.id.
Setting the system to use the LetsEncrypt Live Service.
The certificate thumbrpint in the MDaemon.ini file is B5A5 E418 6DEC 35F9 B7CF 
B1F3 A4A7 EC95 0CE6 5945.
Looking for the local certificate.
I found a certifcate from LetsEncrypt.
The certificate is still valid for 30 days.
Host names: smtp.richtex.co.id imap.richtex.co.id pop3.richtex.co.id 
mail.richtex.co.id
Certificate host names: imap.richtex.co.id mail.richtex.co.id 
pop3.richtex.co.id smtp.richtex.co.id
The list of alternate host names has not changed.
A new certificate is not being requested.
MDaemon is already configured to use B5A5 E418 6DEC 35F9 B7CF B1F3 A4A7 EC95 
0CE6 5945 as the certificate hash.
The MDaemon.ini file will not be updated.
WorldClient is already configured to use B5A5 E418 6DEC 35F9 B7CF B1F3 A4A7 
EC95 0CE6 5945 as the certificate hash.
The WorldClient.ini file will not be updated.
MDaemon Remote Administration is already configured to use B5A5 E418 6DEC 35F9 
B7CF B1F3 A4A7 EC95 0CE6 5945 as the certificate hash.
The WebAdmin.ini file will not be updated.
No INI files were updated. No restart is required.
Cleaning up old files.
Checking for PFX files that begin with mail.richtex.co.id and are older than 
180 days in the D:\MDaemon\PEM\ directory.
Checking for files older than 180 days in the 
D:\MDaemon\WorldClient\HTML\.well-known\Acme-challenge directory.
Checking for certificates that expired more than 30 days ago
The script is stopping because an error occurred.


Saya ambil log terakhir karena dari 6 percobaan bunyinya sama semua pak.

Terima kasih.


--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 22.0.2, SecurityGateway 8.5.3

[Mdaemon-L] Error Retrieving Certificate Let's Encrypt ACME V2

2022-08-02 Terurut Topik Syafril Hermansyah via Mdaemon-L 

On 8/2/22 16:22, Sony via Mdaemon-L wrote:

Namun hanya muncul pesan error berikut:

"An error occurred during the LetsEncrypt process. The error message is: 
Checking for certificates that expired more than 30 days ago"



Berikan error lengkapnya yang tercatat di file letsencrypt log

--
syafril

Syafril Hermansyah
MDaemon-L Moderators, running MDaemon 22.0.2
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

Anyone who stops learning is old, whether twenty or eighty. Anyone who 
keeps learning stays young. The greatest thing you can do is keep your 
mind young.

--- Mark Twain (1835 - 1910)


--
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 22.0.2, SecurityGateway 8.5.3

[Mdaemon-L] Error Retrieving Certificate Let's Encrypt ACME V2

2022-08-02 Terurut Topik Sony via Mdaemon-L 
>> Terakhir create otomatis sukses di versi 19.5.2 32Bit.

Maaf koreksi pak, seharusnya 21.5.2 32Bit atau versi terakhir 32Bit.

Terima kasih.


-- 
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 22.0.2, SecurityGateway 8.5.3

[Mdaemon-L] Error Retrieving Certificate Let's Encrypt ACME V2

2022-08-02 Terurut Topik Sony via Mdaemon-L 
Selamat sore Pak Syafril,

 

Mohon bantuan untuk create certificate.

Sudah mengikuti petunjuk link berikut dan semua kriteria terpenuhi:

 

[mdaemon-l] Tips Mengaktifkan SSL dengan CA Let's Encrypt (update 2019)
bagian 1 (mail-archive.com)
 

 

MDaemon 22.0.1

W2K19

Powershell 5.1.17763.2931

DotNet 4.8

Port 80 & 443 open

Webmail HTTP & HTTPS

PTR sesuai

 

Namun hanya muncul pesan error berikut:

 

"An error occurred during the LetsEncrypt process. The error message is:
Checking for certificates that expired more than 30 days ago"

 

Padahal tidak ada certificate yang exp >30day dalam list.

 

Terakhir create otomatis sukses di versi 19.5.2 32Bit.

Certificate saat ini masih valid dan exp 15 sept 2022.

 

Mohon arahannya bila ada kekurangan, terlewat, atau kesalahan.

 

Terima kasih.



 


-- 
--[mdaemon-l]--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Berlangganan: Kirim mail ke mdaemon-l-subscr...@dutaint.com
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir: MDaemon 22.0.2, SecurityGateway 8.5.3