Renewed SSL certificates do not contain www domain

This morning 10 of our sites went down due to renewed ssl certificates failing to add the www domain to the certificate. There were some sites that had their certificates created correctly for both www and non www domains. Does anyone know why only some of the sites renewed only for non www domains? The reason for failing to add the www domain to the certificate is “Doesn’t match Common Name or/and SANs”. Example lavenderlanephotography,com.au (failed for www) and drrayfarley.com.au (successful for both non www and www). On checking the certificates they seem to contain the same information.

And advice would be greatly appreciated

Cheers

Greg J

Have you set an A record on your registrar with a WWW for the domain?

Yes all that is set correctly. We have confirmed this as we set up the hosting for one of the sites in another host. We changed the ip address only on the existing DNS records and the correct SSL certificates were generated. The domain had been working fine for 12 months or more but on last renewal the issue started. In that time I did upgrade to CyberPanel 2.3

Running this command manually - output is below. In this example there are no errors and the logs state that www is verified, but certificate only creates with non-www domain.

/home/stickymojo.com.au/public_html# /root/.acme.sh/acme.sh --issue -d stickymojo.com.au -d www.stickymojo.com.au --cert-file /etc/letsencrypt/live/stickymojo.com.au/cert.pem --key-file /etc/letsencrypt/live/stickymojo.com.au/privkey.pem --fullchain-file /etc/letsencrypt/live/stickymojo.com.au/fullchain.pem -w /usr/local/lsws/Example/html --force --debug

[Sun 05 Mar 2023 06:54:49 PM AEST] Lets find script dir.
[Sun 05 Mar 2023 06:54:49 PM AEST] _SCRIPT_='/root/.acme.sh/acme.sh'
[Sun 05 Mar 2023 06:54:49 PM AEST] _script='/root/.acme.sh/acme.sh'
[Sun 05 Mar 2023 06:54:49 PM AEST] _script_home='/root/.acme.sh'
[Sun 05 Mar 2023 06:54:49 PM AEST] Using config home:/root/.acme.sh
https://github.com/acmesh-official/acme.sh
v3.0.6
[Sun 05 Mar 2023 06:54:49 PM AEST] Running cmd: issue
[Sun 05 Mar 2023 06:54:49 PM AEST] _main_domain='stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] _alt_domains='www.stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] Using config home:/root/.acme.sh
[Sun 05 Mar 2023 06:54:49 PM AEST] default_acme_server='https://acme-v02.api.letsencrypt.org/directory'
[Sun 05 Mar 2023 06:54:49 PM AEST] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Sun 05 Mar 2023 06:54:49 PM AEST] DOMAIN_PATH='/root/.acme.sh/stickymojo.com.au_ecc'
[Sun 05 Mar 2023 06:54:49 PM AEST] Le_NextRenewTime='1683102855'
[Sun 05 Mar 2023 06:54:49 PM AEST] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Sun 05 Mar 2023 06:54:49 PM AEST] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Sun 05 Mar 2023 06:54:49 PM AEST] GET
[Sun 05 Mar 2023 06:54:49 PM AEST] url='https://acme-v02.api.letsencrypt.org/directory'
[Sun 05 Mar 2023 06:54:49 PM AEST] timeout=
[Sun 05 Mar 2023 06:54:49 PM AEST] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Sun 05 Mar 2023 06:54:49 PM AEST] ret='0'
[Sun 05 Mar 2023 06:54:49 PM AEST] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Sun 05 Mar 2023 06:54:49 PM AEST] ACME_NEW_AUTHZ
[Sun 05 Mar 2023 06:54:49 PM AEST] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Sun 05 Mar 2023 06:54:49 PM AEST] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Sun 05 Mar 2023 06:54:49 PM AEST] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Sun 05 Mar 2023 06:54:49 PM AEST] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf'
[Sun 05 Mar 2023 06:54:49 PM AEST] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Sun 05 Mar 2023 06:54:49 PM AEST] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Sun 05 Mar 2023 06:54:49 PM AEST] _on_before_issue
[Sun 05 Mar 2023 06:54:49 PM AEST] _chk_main_domain='stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] _chk_alt_domains='www.stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] Le_LocalAddress
[Sun 05 Mar 2023 06:54:49 PM AEST] d='stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] Check for domain='stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] _currentRoot='/usr/local/lsws/Example/html'
[Sun 05 Mar 2023 06:54:49 PM AEST] d='www.stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] Check for domain='www.stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] _currentRoot='/usr/local/lsws/Example/html'
[Sun 05 Mar 2023 06:54:49 PM AEST] d
[Sun 05 Mar 2023 06:54:49 PM AEST] _saved_account_key_hash is not changed, skip register account.
[Sun 05 Mar 2023 06:54:49 PM AEST] Read key length:ec-256
[Sun 05 Mar 2023 06:54:49 PM AEST] _createcsr
[Sun 05 Mar 2023 06:54:49 PM AEST] Multi domain='DNS:stickymojo.com.au,DNS:www.stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] Getting domain auth token for each domain
[Sun 05 Mar 2023 06:54:49 PM AEST] d='www.stickymojo.com.au'
[Sun 05 Mar 2023 06:54:49 PM AEST] d
[Sun 05 Mar 2023 06:54:49 PM AEST] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Sun 05 Mar 2023 06:54:49 PM AEST] payload='{"identifiers": [{"type":"dns","value":"stickymojo.com.au"},{"type":"dns","value":"www.stickymojo.com.au"}]}'
[Sun 05 Mar 2023 06:54:49 PM AEST] RSA key
[Sun 05 Mar 2023 06:54:49 PM AEST] HEAD
[Sun 05 Mar 2023 06:54:49 PM AEST] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Sun 05 Mar 2023 06:54:49 PM AEST] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g  -I  '
[Sun 05 Mar 2023 06:54:50 PM AEST] _ret='0'
[Sun 05 Mar 2023 06:54:50 PM AEST] POST
[Sun 05 Mar 2023 06:54:50 PM AEST] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Sun 05 Mar 2023 06:54:50 PM AEST] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Sun 05 Mar 2023 06:54:51 PM AEST] _ret='0'
[Sun 05 Mar 2023 06:54:51 PM AEST] code='201'
[Sun 05 Mar 2023 06:54:51 PM AEST] Le_LinkOrder='https://acme-v02.api.letsencrypt.org/acme/order/378408680/168293591957'
[Sun 05 Mar 2023 06:54:51 PM AEST] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/378408680/168293591957'
[Sun 05 Mar 2023 06:54:51 PM AEST] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/203946142256'
[Sun 05 Mar 2023 06:54:51 PM AEST] payload
[Sun 05 Mar 2023 06:54:51 PM AEST] POST
[Sun 05 Mar 2023 06:54:51 PM AEST] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/203946142256'
[Sun 05 Mar 2023 06:54:51 PM AEST] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Sun 05 Mar 2023 06:54:51 PM AEST] _ret='0'
[Sun 05 Mar 2023 06:54:51 PM AEST] code='200'
[Sun 05 Mar 2023 06:54:51 PM AEST] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/203946142266'
[Sun 05 Mar 2023 06:54:51 PM AEST] payload
[Sun 05 Mar 2023 06:54:51 PM AEST] POST
[Sun 05 Mar 2023 06:54:51 PM AEST] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/203946142266'
[Sun 05 Mar 2023 06:54:51 PM AEST] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Sun 05 Mar 2023 06:54:52 PM AEST] _ret='0'
[Sun 05 Mar 2023 06:54:52 PM AEST] code='200'
[Sun 05 Mar 2023 06:54:52 PM AEST] d='stickymojo.com.au'
[Sun 05 Mar 2023 06:54:52 PM AEST] Getting webroot for domain='stickymojo.com.au'
[Sun 05 Mar 2023 06:54:52 PM AEST] _w='/usr/local/lsws/Example/html'
[Sun 05 Mar 2023 06:54:52 PM AEST] _currentRoot='/usr/local/lsws/Example/html'
[Sun 05 Mar 2023 06:54:52 PM AEST] entry='"type":"http-01","status":"valid","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/203946142256/hA77aQ","token":"bvT-ET_sn_Z8IJjRn5-9h2zquJpPhPXBLCtRt2Ai4JU","validationRecord":[{"url":"http://stickymojo.com.au/.well-known/acme-challenge/bvT-ET_sn_Z8IJjRn5-9h2zquJpPhPXBLCtRt2Ai4JU","hostname":"stickymojo.com.au","port":"80","addressesResolved":["103.119.110.109"],"addressUsed":"103.119.110.109"'
[Sun 05 Mar 2023 06:54:52 PM AEST] token='bvT-ET_sn_Z8IJjRn5-9h2zquJpPhPXBLCtRt2Ai4JU'
[Sun 05 Mar 2023 06:54:52 PM AEST] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/203946142256/hA77aQ'
[Sun 05 Mar 2023 06:54:52 PM AEST] keyauthorization='bvT-ET_sn_Z8IJjRn5-9h2zquJpPhPXBLCtRt2Ai4JU.USjhZ28vdqUV6j601nGN0JI8hx14673lYNfJwdF2UtQ'
[Sun 05 Mar 2023 06:54:52 PM AEST] stickymojo.com.au is already verified.
[Sun 05 Mar 2023 06:54:52 PM AEST] keyauthorization='verified_ok'
[Sun 05 Mar 2023 06:54:52 PM AEST] dvlist='stickymojo.com.au#verified_ok#https://acme-v02.api.letsencrypt.org/acme/chall-v3/203946142256/hA77aQ#http-01#/usr/local/lsws/Example/html'
[Sun 05 Mar 2023 06:54:52 PM AEST] d='www.stickymojo.com.au'
[Sun 05 Mar 2023 06:54:52 PM AEST] Getting webroot for domain='www.stickymojo.com.au'
[Sun 05 Mar 2023 06:54:52 PM AEST] _w='/usr/local/lsws/Example/html'
[Sun 05 Mar 2023 06:54:52 PM AEST] _currentRoot='/usr/local/lsws/Example/html'
[Sun 05 Mar 2023 06:54:52 PM AEST] entry='"type":"http-01","status":"valid","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/203946142266/3MMaHA","token":"biX5Q6EfKxS3C5KEeF-e9M8IuEOcdAjFQwZkASsKE3I","validationRecord":[{"url":"http://www.stickymojo.com.au/.well-known/acme-challenge/biX5Q6EfKxS3C5KEeF-e9M8IuEOcdAjFQwZkASsKE3I","hostname":"www.stickymojo.com.au","port":"80","addressesResolved":["103.119.110.109"],"addressUsed":"103.119.110.109"'
[Sun 05 Mar 2023 06:54:52 PM AEST] token='biX5Q6EfKxS3C5KEeF-e9M8IuEOcdAjFQwZkASsKE3I'
[Sun 05 Mar 2023 06:54:52 PM AEST] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/203946142266/3MMaHA'
[Sun 05 Mar 2023 06:54:52 PM AEST] keyauthorization='biX5Q6EfKxS3C5KEeF-e9M8IuEOcdAjFQwZkASsKE3I.USjhZ28vdqUV6j601nGN0JI8hx14673lYNfJwdF2UtQ'
[Sun 05 Mar 2023 06:54:52 PM AEST] www.stickymojo.com.au is already verified.
[Sun 05 Mar 2023 06:54:52 PM AEST] keyauthorization='verified_ok'
[Sun 05 Mar 2023 06:54:52 PM AEST] dvlist='www.stickymojo.com.au#verified_ok#https://acme-v02.api.letsencrypt.org/acme/chall-v3/203946142266/3MMaHA#http-01#/usr/local/lsws/Example/html'
[Sun 05 Mar 2023 06:54:52 PM AEST] d
[Sun 05 Mar 2023 06:54:52 PM AEST] vlist='stickymojo.com.au#verified_ok#https://acme-v02.api.letsencrypt.org/acme/chall-v3/203946142256/hA77aQ#http-01#/usr/local/lsws/Example/html,www.stickymojo.com.au#verified_ok#https://acme-v02.api.letsencrypt.org/acme/chall-v3/203946142266/3MMaHA#http-01#/usr/local/lsws/Example/html,'
[Sun 05 Mar 2023 06:54:52 PM AEST] d='stickymojo.com.au'
[Sun 05 Mar 2023 06:54:52 PM AEST] stickymojo.com.au is already verified, skip http-01.
[Sun 05 Mar 2023 06:54:52 PM AEST] d='www.stickymojo.com.au'
[Sun 05 Mar 2023 06:54:52 PM AEST] www.stickymojo.com.au is already verified, skip http-01.
[Sun 05 Mar 2023 06:54:52 PM AEST] ok, let's start to verify
[Sun 05 Mar 2023 06:54:52 PM AEST] stickymojo.com.au is already verified, skip http-01.
[Sun 05 Mar 2023 06:54:52 PM AEST] www.stickymojo.com.au is already verified, skip http-01.
[Sun 05 Mar 2023 06:54:52 PM AEST] pid
[Sun 05 Mar 2023 06:54:52 PM AEST] No need to restore nginx, skip.
[Sun 05 Mar 2023 06:54:52 PM AEST] _clearupdns
[Sun 05 Mar 2023 06:54:52 PM AEST] dns_entries
[Sun 05 Mar 2023 06:54:52 PM AEST] skip dns.
[Sun 05 Mar 2023 06:54:52 PM AEST] Verify finished, start to sign.
[Sun 05 Mar 2023 06:54:52 PM AEST] i='2'
[Sun 05 Mar 2023 06:54:52 PM AEST] j='8'
[Sun 05 Mar 2023 06:54:52 PM AEST] Lets finalize the order.
[Sun 05 Mar 2023 06:54:52 PM AEST] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/378408680/168293591957'
[Sun 05 Mar 2023 06:54:52 PM AEST] url='https://acme-v02.api.letsencrypt.org/acme/finalize/378408680/168293591957'
[Sun 05 Mar 2023 06:54:52 PM AEST] payload='{"csr": " --removed "}'
[Sun 05 Mar 2023 06:54:52 PM AEST] POST
[Sun 05 Mar 2023 06:54:52 PM AEST] _post_url='https://acme-v02.api.letsencrypt.org/acme/finalize/378408680/168293591957'
[Sun 05 Mar 2023 06:54:52 PM AEST] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Sun 05 Mar 2023 06:54:53 PM AEST] _ret='0'
[Sun 05 Mar 2023 06:54:53 PM AEST] code='200'
[Sun 05 Mar 2023 06:54:53 PM AEST] Order status is valid.
[Sun 05 Mar 2023 06:54:53 PM AEST] Le_LinkCert='https://acme-v02.api.letsencrypt.org/acme/cert/04be160aee2efe24be9dfc94847272f97412'
[Sun 05 Mar 2023 06:54:53 PM AEST] Downloading cert.
[Sun 05 Mar 2023 06:54:53 PM AEST] Le_LinkCert='https://acme-v02.api.letsencrypt.org/acme/cert/04be160aee2efe24be9dfc94847272f97412'
[Sun 05 Mar 2023 06:54:53 PM AEST] url='https://acme-v02.api.letsencrypt.org/acme/cert/04be160aee2efe24be9dfc94847272f97412'
[Sun 05 Mar 2023 06:54:53 PM AEST] payload
[Sun 05 Mar 2023 06:54:53 PM AEST] POST
[Sun 05 Mar 2023 06:54:53 PM AEST] _post_url='https://acme-v02.api.letsencrypt.org/acme/cert/04be160aee2efe24be9dfc94847272f97412'
[Sun 05 Mar 2023 06:54:53 PM AEST] _CURL='curl --silent --dump-header /root/.acme.sh/http.header  -L  -g '
[Sun 05 Mar 2023 06:54:54 PM AEST] _ret='0'
[Sun 05 Mar 2023 06:54:54 PM AEST] code='200'
[Sun 05 Mar 2023 06:54:54 PM AEST] Found cert chain
[Sun 05 Mar 2023 06:54:54 PM AEST] _end_n='26'
[Sun 05 Mar 2023 06:54:54 PM AEST] Le_LinkCert='https://acme-v02.api.letsencrypt.org/acme/cert/04be160aee2efe24be9dfc94847272f97412'

[Sun 05 Mar 2023 06:54:54 PM AEST] Your cert is in: /root/.acme.sh/stickymojo.com.au_ecc/stickymojo.com.au.cer
[Sun 05 Mar 2023 06:54:54 PM AEST] Your cert key is in: /root/.acme.sh/stickymojo.com.au_ecc/stickymojo.com.au.key
[Sun 05 Mar 2023 06:54:54 PM AEST] The intermediate CA cert is in: /root/.acme.sh/stickymojo.com.au_ecc/ca.cer
[Sun 05 Mar 2023 06:54:54 PM AEST] And the full chain certs is there: /root/.acme.sh/stickymojo.com.au_ecc/fullchain.cer
[Sun 05 Mar 2023 06:54:54 PM AEST] Installing cert to: /etc/letsencrypt/live/stickymojo.com.au/cert.pem
[Sun 05 Mar 2023 06:54:54 PM AEST] Installing key to: /etc/letsencrypt/live/stickymojo.com.au/privkey.pem
[Sun 05 Mar 2023 06:54:54 PM AEST] Installing full chain to: /etc/letsencrypt/live/stickymojo.com.au/fullchain.pem
[Sun 05 Mar 2023 06:54:54 PM AEST] _on_issue_success
/* ------ */