Domain: acegames.de
OS: Linux vserver 2.6.32-042stab116.2 + debian-8.0-amd64-owncloud
Web-Server: Apache2 (I use vHosts to point my subdomains to different locations on the server)
Hosting-Provider: Kramer Betriebs GmbH (Prepaid-Hoster.de)
SSH: ssh connection via putty works perfectly (no controlpanels)
vHost info:
default-vhost: acegames.de (/var/www/html/) and its alias www.acegames.de
second-vhost: status.acegames.de (var/www/html/status/)
third-vhost: cloud.acegames.de (/var/www/owncloud/)
The Story behind it:
If i do the following command: certbot-auto --apache -d -acegames.de -d www.acegames.de
Output is: no errors! has been created.
If i test it, the ony-https works for both (acegames.de and www.acegames.de) but chrome outputs, that the certificate that is used here (www.acegames.de) is ony for acegames.de
[There are issues with the site's certificate chain (net::ERR_CERT_COMMON_NAME_INVALID).]
then if i do: certbot-auto --apache -d cloud.acegames.de
i get:
Failed authorization procedure. cloud.acegames.de (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Failed to connect to 137.74.140.78:443 for TLS-SNI-01 challenge.
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: cloud.acegames.de
Type: connection
Detail: Failed to connect to 137.74.140.78:443 for TLS-SNI-01
challenge
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you're using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
But i have checked the DNS-Records of acegames.de and theres everything right.
if a certificate has already been made for acegames.de it reports, that there already is a cert for acegames.de
And if i do both in one its getting even more crazy:
certbot-auto --apache -d acegames.de -d www.acegames.de -d cloud.acegames.de
or certbot-auto --apache -d acegames.de -d www.acegames.de -d status.acegames.de (doesnt matter which...)
output:
Failed authorization procedure. cloud.acegames.de (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for TLS-SNI-01 challenge. Requested 5f0fbb61f0a40da088bd1ddd42e0a61b.791f2107b9946e40865ec0855b7a1ed0.acme.invalid from 137.74.140.78:443. Received certificate containing 'dummy, 059f15b2f20053caf0b3f4bbe4f69485.d8267e5a91003c860c27163b540acf29.acme.invalid'
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: cloud.acegames.de
Type: unauthorized
Detail: Incorrect validation certificate for TLS-SNI-01 challenge.
Requested
5f0fbb61f0a40da088bd1ddd42e0a61b.791f2107b9946e40865ec0855b7a1ed0.acme.invalid
from 137.74.140.78:443. Received certificate containing 'dummy,
059f15b2f20053caf0b3f4bbe4f69485.d8267e5a91003c860c27163b540acf29.acme.invalid'
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A record(s) for that domain
contain(s) the right IP address.
i am really confused.