Announcement

Collapse
No announcement yet.

Let's Encrypt Problem

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Let's Encrypt Problem


    I tried to generate all certificates for a domain (just happens to be my controller's FQDN) with Let's Encrypt and got this: File "/opt/eff.org/certbot/venv/lib/python2.7/site-packages/certbot/auth_handler.py", line 161, in _respond self._poll_challenges(aauthzrs, chall_update, best_effort) File "/opt/eff.org/certbot/venv/lib/python2.7/site-packages/certbot/auth_handler.py", line 232, in _poll_challenges raise errors.FailedChallenges(all_failed_achalls) FailedChallenges: Failed authorization procedure. gyras.ics-il.net (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://gyras.ics-il.net/.well-known/...oml8w6ZfRX6nQ: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">\n<html><head>\n<title>404 Not Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p" Failed authorization procedure. gyras.ics-il.net (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://gyras.ics-il.net/.well-known/...oml8w6ZfRX6nQ: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">\n<html><head>\n<title>404 Not Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p" IMPORTANT NOTES: - The following errors were reported by the server: Domain: gyras.ics-il.net Type: unauthorized Detail: Invalid response from http://gyras.ics-il.net/.well-known/...oml8w6ZfRX6nQ: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">\n<html><head>\n<title>404 Not Found</title>\n</head><body>\n<h1>Not Found</h1>\n<p" To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. I do see the .well-known (and the acme-challenge folder) folder appear briefly while all of this is happening, but it doesn't exist long enough for me to get in and see what it's contents are.

  • #2
    Of course, the forum slaughtered every attempt I made at formatting this nicely.

    Now I've hit the rate limit, so I'll guess I'll try tomorrow.

    Comment


    • #3
      Hi johan-hammy

      Many thanks

      I am sorry, I do not see how the forum slaughtered your LE attempts. You are free to do what you prefer and I for one, applauds members who post their changes. However, I do not remember every member who posts so sometimes I may post that itís been done already even if the poster is the member that created it

      I am sure you are aware, but you could change live to test in LE and the limit would be removed for testing only. I understand why live has limits imposed by LE servers

      Also, are you sure it is not an LE server update as I believe LE are changing over to use acme2 and acme1 will close. IW use acme1 so would need to change if I am correct but apologise if I am wrong sorry.

      The good point over acme2 is that it will do wildcard LE certs

      Many thanks

      John

      Comment


      • #4
        The forum software slaughtered the formatting.

        Comment

        Working...
        X