Authorization for certificate failure

cubbz · April 18, 2023, 3:34am

I trying to use simple ssl plugin to generate certificate for my domain and its failing not sure why

My domain is: https://iamjosephwilson.com/

It produced this output: "A test authorization for iamjosephwilson.com to the Let's Encrypt staging service has revealed issues that may prevent any certificate for this domain being issued."

rg305 · April 18, 2023, 3:39am

Hi @cubbz, and welcome to the LE community forum

Can you be more specific/descriptive about the plugin?

And also, try answering as much as you can:

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Help us to help you!

rg305 · April 18, 2023, 4:45pm

@AlyssaSmith00, please open your own separate topic

Bruce5051 · April 18, 2023, 9:40pm

@cubbz I find that both Port 80 and 443 are closed; if you are using the DNS-01 challenge of the Challenge Types - Let's Encrypt then that is not a problem
Using the online tool Let's Debug yields these results for the HTTP-01 challenge https://letsdebug.net/iamjosephwilson.com/1450080

Here is a list of issued certificates crt.sh | iamjosephwilson.com, the latest being 2023-04-02.

$ nmap -Pn iamjosephwilson.com
Starting Nmap 7.80 ( https://nmap.org ) at 2023-04-18 21:37 UTC
Nmap scan report for iamjosephwilson.com (147.135.39.157)
Host is up (0.018s latency).
rDNS record for 147.135.39.157: ns103700.ip-147-135-39.us
Not shown: 987 filtered ports
PORT      STATE  SERVICE
20/tcp    closed ftp-data
21/tcp    open   ftp
22/tcp    open   ssh
53/tcp    open   domain
80/tcp    closed http
110/tcp   closed pop3
143/tcp   closed imap
443/tcp   closed https
587/tcp   closed submission
993/tcp   closed imaps
995/tcp   closed pop3s
10000/tcp open   snet-sensor-mgmt
20000/tcp open   dnp

Nmap done: 1 IP address (1 host up) scanned in 4.58 seconds

Bruce5051 · April 18, 2023, 11:16pm

If you are attempting a certificate for both iamjosephwilson.com and www.iamjosephwilson.com, presently there are a total of 3 IPv4 Address involved.
DNS Spy report for iamjosephwilson.com reviles these DNS Records

system · May 18, 2023, 11:17pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Failed authorization procedure.The client lacks sufficient authorization Help	4	3726	May 6, 2020
I am unable to generate the ssl cert using cert Help	2	59	April 9, 2025
Unable to setup ssl cert Help	19	412	June 1, 2024
Some challenges have failed Help	12	1393	November 2, 2022
Cannot obtain a certificate Help	2	968	December 14, 2021

Authorization for certificate failure

Related topics