Authorization result: invalid statut 400

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: password.carpediem.pro

I ran this command: Create a new certificate

It produced this output: Plugin IIS generated source password.carpediem.pro with 1 identifiers
Plugin Single created 1 order
Cached order has status invalid, discarding
[password.carpediem.pro] Authorizing...
[password.carpediem.pro] Authorizing using http-01 validation (SelfHosting)
[password.carpediem.pro] Authorization result: invalid
[password.carpediem.pro] {"type":"urn:ietf:params:acme:error:connection","detail":"81.250.174.143: Fetching https://carpediem.pro/: Redirect loop detected","status":400,"instance":null}
[password.carpediem.pro] Deactivating pending authorization

My web server is (include version): iis

The operating system my web server runs on is (include version): Windows server 2022

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know): i don't know

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): iis

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): 2.6.0

1 Like

Hi @hugocd, and welcome to the LE community forum :slight_smile:

The initial redirection breaks the ACME challenge request:

curl -Ii http://password.carpediem.pro/.well-known/acme-challenge/Test_File-1234
HTTP/1.1 301 Moved Permanently
Date: Wed, 13 Sep 2023 13:35:18 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000;includeSubDomains; preload
Location: https://carpediem.pro/ <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
Content-Type: text/html; charset=iso-8859-1

By redirecting to HTTPS while removing the path and file requested.

Requesting the same path and file via HTTPS shows a similar problem:

curl -Iik https://password.carpediem.pro/.well-known/acme-challenge/Test_File-1234
HTTP/1.1 301 Moved Permanently
Date: Wed, 13 Sep 2023 13:37:25 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000;includeSubDomains; preload
Location: https://carpediem.pro/    <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
Content-Type: text/html; charset=iso-8859-1
4 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.