I tried to generate all certificates for a domain (just happens to be my controller’s FQDN) with Let’s Encrypt and got this: File “/opt/eff.org/certbot/venv/lib/python2.7/site-packages/certbot/auth_handler.py”, line 161, in _respond self._poll_challenges(aauthzrs, chall_update, best_effort) File “/opt/eff.org/certbot/venv/lib/python2.7/site-packages/certbot/auth_handler.py”, line 232, in _poll_challenges raise errors.FailedChallenges(all_failed_achalls) FailedChallenges: Failed authorization procedure. gyras.ics-il.net (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://gyras.ics-il.net/.well-known/acme-challenge/508gLQxd3NH5LvZICEO4UCmfNE3ukEoml8w6ZfRX6nQ: “<!DOCTYPE HTML PUBLIC “-//IETF//DTD HTML 2.0//EN”>
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p” Failed authorization procedure. gyras.ics-il.net (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://gyras.ics-il.net/.well-known/acme-challenge/508gLQxd3NH5LvZICEO4UCmfNE3ukEoml8w6ZfRX6nQ: “<!DOCTYPE HTML PUBLIC “-//IETF//DTD HTML 2.0//EN”>
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p” IMPORTANT NOTES: - The following errors were reported by the server: Domain: gyras.ics-il.net Type: unauthorized Detail: Invalid response from http://gyras.ics-il.net/.well-known/acme-challenge/508gLQxd3NH5LvZICEO4UCmfNE3ukEoml8w6ZfRX6nQ: “<!DOCTYPE HTML PUBLIC “-//IETF//DTD HTML 2.0//EN”>
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p” To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. I do see the .well-known (and the acme-challenge folder) folder appear briefly while all of this is happening, but it doesn’t exist long enough for me to get in and see what it’s contents are.
Of course, the forum slaughtered every attempt I made at formatting this nicely.
Now I’ve hit the rate limit, so I’ll guess I’ll try tomorrow.
Hi johan-hammy
Many thanks
I am sorry, I do not see how the forum slaughtered your LE attempts. You are free to do what you prefer and I for one, applauds members who post their changes. However, I do not remember every member who posts so sometimes I may post that it?s been done already even if the poster is the member that created it
I am sure you are aware, but you could change live to test in LE and the limit would be removed for testing only. I understand why live has limits imposed by LE servers
Also, are you sure it is not an LE server update as I believe LE are changing over to use acme2 and acme1 will close. IW use acme1 so would need to change if I am correct but apologise if I am wrong sorry.
The good point over acme2 is that it will do wildcard LE certs
Many thanks
John
The forum software slaughtered the formatting.