Authorization did not match


#1

I’m trying to install certificate with this command:

sudo certbot --nginx -d bankofsoftware.com -d www.bankofsoftware.com

Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for bankofsoftware.com
http-01 challenge for www.bankofsoftware.com
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. bankofsoftware.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: The key authorization file from the server did not match this challenge [iMz-rheG9C6ZD0WO8kkxZG7vl5-IW7v93lYE1QdKzdU.5Z9XTwxEQWb5ZnlUsMpWZEm2RWU_qCT-y6pkpPFdMuA] != [iMz-rheG9C6ZD0WO8kkxZG7vl5-IW7v93lYE1QdKzdU.-f_daEYxVOFls4aupfol2f4PA8ikqBUw-4tU6dotcK8]

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: bankofsoftware.com
   Type:   unauthorized
   Detail: The key authorization file from the server did not match
   this challenge
   [iMz-rheG9C6ZD0WO8kkxZG7vl5-IW7v93lYE1QdKzdU.5Z9XTwxEQWb5ZnlUsMpWZEm2RWU_qCT-y6pkpPFdMuA]
   !=
   [iMz-rheG9C6ZD0WO8kkxZG7vl5-IW7v93lYE1QdKzdU.-f_daEYxVOFls4aupfol2f4PA8ikqBUw-4tU6dotcK8]

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address.

I have no idea why this wouldnt work


#2

Your two domains point to different IP addresses and do not serve the same content:

$ curl -i bankofsoftware.com/.well-known/acme-challenge/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 29 Mar 2018 20:47:10 GMT
Content-Type: text/plain
Content-Length: 45
Connection: keep-alive
X-Loopia-Node: 172.22.234.10

.-f_daEYxVOFls4aupfol2f4PA8ikqBUw-4tU6dotcK8

$ curl -i www.bankofsoftware.com/.well-known/acme-challenge/
HTTP/1.1 404 Not Found
Server: nginx/1.10.3 (Ubuntu)
Date: Thu, 29 Mar 2018 20:47:17 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive

<html>
<head><title>404 Not Found</title></head>
<body bgcolor="white">
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/1.10.3 (Ubuntu)</center>
</body>
</html>

Perhaps the solution is to point both domains to your nginx server, but that would be up to you to decide what is correct.


#3

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.