500 Internal Server during generate new SSL

VitaliiAir · May 21, 2021, 6:40am

Hi all, please help me. 2 month ago it was worked well with a paid certificate, but a few days ago I decided to change for certbot and auto-renew.

My domain is: www.airstage.co

I ran this command: sudo certbot --nginx -d airstage.co -d www.airstage.co

It produced this output:

sudo certbot --nginx -d airstage.co -d www.airstage.co
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx
Requesting a certificate for airstage.co and www.airstage.co
Performing the following challenges:
http-01 challenge for airstage.co
http-01 challenge for www.airstage.co
Waiting for verification...
Challenge failed for domain airstage.co
Challenge failed for domain www.airstage.co
http-01 challenge for airstage.co
http-01 challenge for www.airstage.co
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: airstage.co
   Type:   unauthorized
   Detail: Invalid response from
   http://airstage.co/.well-known/acme-challenge/t93iYYOgRaiP9puIu2t7H5YW_DLr2x-R2_CKokFe8VY
   [92.205.7.127]: "<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML
   2.0//EN\">\n<html><head>\n<title>500 Internal Server
   Error</title>\n</head><body>\n<h1>Inter"

   Domain: www.airstage.co
   Type:   unauthorized
   Detail: Invalid response from
   http://www.airstage.co/.well-known/acme-challenge/NteF_tBURbZXNRKeh1DlWcSdv87L6RTZKNQFReFOY1A
   [92.205.7.127]: "<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML
   2.0//EN\">\n<html><head>\n<title>500 Internal Server
   Error</title>\n</head><body>\n<h1>Inter"

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address.

My web server is (include version): nginx/1.10.3 (Ubuntu)

The operating system my web server runs on is (include version): Ubuntu 16.04

My hosting provider, if applicable, is: digital ocean

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 1.15.0

_az · May 21, 2021, 7:17am

Are you sure?

Your domain points to 92.205.7.127, which is a GoDaddy cPanel server.

Perhaps you need to first change the DNS to point to your DigitalOcean droplet?

VitaliiAir · May 21, 2021, 7:44am

Could you please tell me where I can change DNS? At DO website?

griffin · May 21, 2021, 7:51am

Welcome to the Let's Encrypt Community

It looks like airstage.co is registered through GoDaddy and is using pdns11.domaincontrol.com and pdns12.domaincontrol.com as nameservers, which are controlled by GoDaddy, so I recommend changing your DNS A record through your main GoDaddy account, which is not your GoDaddy cPanel hosting account.

VitaliiAir · May 21, 2021, 12:49pm

Thanks, the problem was connected with new DNS settings.

system · June 20, 2021, 12:49pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.