End of life for SSL certificate Let's Encrypt ACMEv1

My YunoHost server

Hardware: Raspberry Pi at home
YunoHost version: 3.4.2
I have access to my server : Through SSH
Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : no

Description of my issue

Hi guys,

Does anyone know if Yunohost switched from Let’s Encrypt HTTPS Certificate ACMEv1 to ACMEv2?

First time installing my server with a new domain name. I installed a web site that I can access from anywhere with the default auto-signed certificate. However I want to add a Let’s encrypt SSL certificate to facilitate access.

When I run yunohost domain cert-install my.domain.here, I get this 403 from Let’s encrypt, saying that they don’t support ACMEv1 anymore:

Info: Now attempting install of certificate for domain my.domain.here!
Success! The configuration has been updated for service 'dnsmasq'
Info: Parsing account key...
Info: Parsing CSR...
Info: Registering account...
Error: Error registering: 403 {
  "type": "urn:acme:error:unauthorized",
  "detail": "Account creation on ACMEv1 is disabled. Please upgrade your ACME client to a version that supports ACMEv2 / RFC 8555. See https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1/88430 for details.",
  "status": 403

Does anyone knows if ACMEv2 will be set up soon? Is there a roadmap on this subject?

Official annoucement from Let’s Encrypt:

Just tested on a fresh installed YunoHost… And certificate installaiton work.

ACMEv2 is implemented in YunoHost since 3.6.2 so you should upgrade your YunoHost…

1 Like

Thanks yalh76.

My Yunohost 3.4.2 is the packaged version for Raspberry Pi hardware. Maybe I should give a try to upgrade to 3.6.x (x >= 2) indeed.
Thank you again

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.