[Windows] Unable to request certificate for custom domain. #54
Description
Command I've used was this on Windows:
python cli.py -e ****@***** --contact ****@***** --agree-tos --no-passphrase --imap --login 91571511004722815@cock.li --password %MYPASS% --host mail.cock.li --port 993 --ssl --smtp-method STARTTLS --smtp-login **** --smtp-password %MYIPASS% --smtp-host disroot.org --smtp-port 587 --tb cert
And response was this:
Saving debug log to C:\Certbot\log\letsencrypt.log
G:\acme_email\certbot_castle\utils.py:25: CryptographyDeprecationWarning: Parsed a serial number which wasn't positive (i.e., it was negative or zero), which is disallowed by RFC 5280. Loading this certificate will cause an exception in a future release of cryptography.
cert = x509.load_der_x509_certificate(cert_bytes)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
You are requesting a S/MIME certificate to CASTLE ACME server. Remember to add
the root certificate into your trust store for proper operation.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
D:\Program Files\Python313\Lib\ssl.py:524: UserWarning: Bad certificate in Windows certificate store: not enough data: cadata does not contain a certificate (_ssl.c:4035)
warnings.warn(f"Bad certificate in Windows certificate store: {exc!s}")
Requesting a certificate for ****@*****
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
A challenge request for S/MIME certificate has been sent. In few minutes, ACME
server will send a challenge e-mail to requested recipient
****@*****. You do not need to take ANY action, as it will be
replied automatically.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
An unexpected error occurred:
AttributeError: module 'certbot_castle.plugins.castle.exception' has no attribute 'FromAddressMismatch'
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile C:\Certbot\log\letsencrypt.log or re-run Certbot with -v for more details.
(venv) G:\acme_email>
I don't know how to fix this. I have setup that allows custom domain that was linked to disroot.org to allow sending mails in behalf of my custom domain while other mail server would be used to receive emails without needing to pay extra for email server - just using email gateways as a method to add and use emails via my custom domain. How can I request free S/MIME certificates in this case.
Thanks in advance!