Comment 0 for bug 1864900

It appears that letsencrypt are no longer honouring the method Juju uses to obtain TLS certificates from letsencrypt API's.

Error in machine log after bootstrap

2020-02-25 21:10:17 ERROR juju.worker.httpserver tls.go:96 cannot get autocert certificate for "juju.maas.devzero.co.za": 403 urn:acme:error:unauthorized: Account creation on ACMEv1 is disabled. Please upgrade your ACME client to a version that supports ACMEv2 / RFC 8555. See https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1/88430 for details.

method used to bootstrap controller

juju bootstrap cloud controller-name --constraints tags=juju-maas --config autocert-dns-name=juju.example.com --credential credentialname