certbot for letsencrypt missing pyopenssl module

centos7 certbot

I need help setting up the CertBot for LetsEncrypt

I am running on CentOS 7 with Python 2.7

When I run certbot I get the following error:

[root@li86-193 frappe-bench]#certbot certonly --manual

Traceback (most recent call last):
  File "/usr/bin/certbot", line 7, in <module>
    from certbot.main import main
  File "/usr/lib/python2.7/site-packages/certbot/main.py", line 21, in <module>
    from certbot import client
  File "/usr/lib/python2.7/site-packages/certbot/client.py", line 10, in <module>
    from acme import client as acme_client
  File "/usr/lib/python2.7/site-packages/acme/client.py", line 31, in <module>
    requests.packages.urllib3.contrib.pyopenssl.inject_into_urllib3()
  File "/usr/lib/python2.7/site-packages/requests/packages/urllib3/contrib/pyopenssl.py", line 112, in inject_into_urllib3
    _validate_dependencies_met()
  File "/usr/lib/python2.7/site-packages/requests/packages/urllib3/contrib/pyopenssl.py", line 147, in _validate_dependencies_met
    raise ImportError("'pyOpenSSL' module missing required functionality. "
ImportError: 'pyOpenSSL' module missing required functionality. Try upgrading to v0.14 or newer.

[root@li86-193 frappe-bench]# pip show certbot
Name: certbot
Version: 0.11.1
Summary: ACME client
Home-page: https://github.com/letsencrypt/letsencrypt
Author: Certbot Project
Author-email: [email protected]
License: Apache License 2.0
Location: /usr/lib/python2.7/site-packages
Requires: ConfigArgParse, configobj, zope.component, pytz, setuptools, cryptography, zope.interface, pyrfc3339, mock, parsedatetime, six, acme, PyOpenSSL

[root@li86-193 frappe-bench]# pip show pyopenssl
Name: pyOpenSSL
Version: 16.2.0
Summary: Python wrapper module around the OpenSSL library
Home-page: https://pyopenssl.readthedocs.io/
Author: Hynek Schlawack
Author-email: [email protected]
License: Apache License, Version 2.0
Location: /usr/lib/python2.7/site-packages
Requires: six, cryptography

Please help out

Thank you


Solution 1:

Don't try to install certbot manually on CentOS/RHEL systems. It just makes a huge mess. Instead, install it from EPEL.

yum install epel-release
yum install certbot

Solution 2:

I experienced this same issue twice on 2 separate Centos7 systems in the last 2 months. This is what worked for me:

  • yum remove pyOpenSSL [This will remove certbot installed via epel]
  • yum install openssl-devel python-devel [May or may not actually be necessary]
  • pip install certbot
  • pip install certbot-apache

After completing these steps I was able to successfully renew my certificates with certbot.

Related

Slave_SQL_Running: No: MySQL replication stopped working
How do I completely turn off Windows Defender from PowerShell?
How do I dump raw data from a TCP port in Windows using the netsh command?
Install GRUB on NTFS
Cost effective way to build a server with lots of RAM
Are there any benchmarks for virtual machines with and without VT-x?
Is this a recommended/valid approach for file server permissions?
How can you set the -R in your LESS environment variable?
cannot add a user to sysadmin role in SQL Server
What happens if you short-circuit a network patch cable?
Can you use a USB hard drive in ESXI?
Using namespaces in Powershell