Cannot create ssl Certificate

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: ithelpdesk.site

I ran this command: wacs.exe

It produced this output:
A simple Windows ACMEv2 client (WACS)
Software version 2.1.10.896 (RELEASE, PLUGGABLE)
ACME server https://acme-v02.api.letsencrypt.org/
IIS version 10.0
Running with administrator credentials
Scheduled task not configured yet
Please report issues at https://github.com/win-acme/win-acme

N: Create certificate (default settings)
M: Create certificate (full options)
R: Run renewals (0 currently due)
A: Manage renewals (0 total)
O: More options…
Q: Quit

My web server is (include version): IIS 10

The operating system my web server runs on is (include version):
Windows Server 2019 version 1809 (Build 17763.737)

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know): I don’t know
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):yes I can manage my site

[ithelpdesk.site] Authorizing…
[ithelpdesk.site] Authorizing using http-01 validation (SelfHosting)
[ithelpdesk.site] Authorization result: invalid
[ithelpdesk.site] {
“type”: “urn:ietf:params:acme:error:unauthorized”,
“detail”: “Invalid response from http://ithelpdesk.site/.well-known/acme-challenge/ryUnAfu6fHrgiVYmFxl7ToHg2Fost6b8wjqKWLPXEUI [34.102.136.180]: “<!doctype html><html lang=\“en\”><meta http-equiv=\“content-type\” content=\“text/html;charset=utf-8\”><meta name=\“viewport\” con””,
“status”: 403
}

I am getting this error

Hi,

Your site might be configured incorrectly because all pages on your site returns the same blank page (that’s configured to use by some ad / information grabbing scripts). Please fix your configuration first.

Thank you

It looks to me like you don’t actually have hosting (a server) for your website, meaning that you have a domain registered through GoDaddy, but it’s pointing to a parking page. You’ll need to use manual DNS-based verification to get a certificate for your domain, but you won’t actually be able to install the certificate until you actually having a hosting package. I can give you instructions to do this, but you’ll be a lot better off getting your certificate AFTER setting up hosting for your website.

I really appreciate if you can help to sort out this issue

Where are you going to install your certificate?

I mean: what piece of software will be serving your website?

Hi @syedmujahed

please check your system.

That link

has that content:

<!doctype html><html lang="en"><head><meta http-equiv="content-type" content="text/html;charset=utf-8"><meta name="viewport" content="width=device-width,initial-scale=1"><link rel="shortcut icon" href="data:image/x-icon;," type="image/x-icon"><title></title><script src="https://www.google.com/adsense/domains/caf.js" type="text/javascript"></script><noscript><style>#content-main{display:none}</style><div>For full functionality of this site it is necessary to enable JavaScript. Here are the <a target="_blank" href="https://www.enable-javascript.com/">instructions how to enable JavaScript in your web browser</a>.</div></noscript>
<script type="application/javascript">window.LANDER_SYSTEM="PW"</script></head><body><div id="contentMain"></div><script>!function(e){function r(r){for(var n,l,a=r[0],i=r[1],p=r[2],c=0,s=[];c<a.length;c++)l=a[c],Object.prototype.hasOwnProperty.call(o,l)&&o[l]&&s.push(o[l][0]),o[l]=0;for(n in i)Object.prototype.hasOwnProperty.call(i,n)&&(e[n]=i[n]);for(f&&f(r);s.length;)s.shift()();return u.push.apply(u,p||[]),t()}function t(){for(var e,r=0;r<u.length;r++){for(var t=u[r],n=!0,a=1;a<t.length;a++){var i=t[a];0!==o[i]&&(n=!1)}n&&(u.splice(r--,1),e=l(l.s=t[0]))}return e}var n={},o={1:0},u=[];function l(r){if(n[r])return n[r].exports;var t=n[r]={i:r,l:!1,exports:{}};return e[r].call(t.exports,t,t.exports,l),t.l=!0,t.exports}l.m=e,l.c=n,l.d=function(e,r,t){l.o(e,r)||Object.defineProperty(e,r,{enumerable:!0,get:t})},l.r=function(e){"undefined"!=typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},l.t=function(e,r){if(1&r&&(e=l(e)),8&r)return e;if(4&r&&"object"==typeof e&&e&&e.__esModule)return e;var t=Object.create(null);if(l.r(t),Object.defineProperty(t,"default",{enumerable:!0,value:e}),2&r&&"string"!=typeof e)for(var n in e)l.d(t,n,function(r){return e[r]}.bind(null,n));return t},l.n=function(e){var r=e&&e.__esModule?function(){return e.default}:function(){return e};return l.d(r,"a",r),r},l.o=function(e,r){return Object.prototype.hasOwnProperty.call(e,r)},l.p="https://d1hi41nc56pmug.cloudfront.net/";var a=this["webpackJsonpparking-lander"]=this["webpackJsonpparking-lander"]||[],i=a.push.bind(a);a.push=r,a=a.slice();for(var p=0;p<a.length;p++)r(a[p]);var f=i;t()}([])</script><script src="https://d1hi41nc56pmug.cloudfront.net/static/js/2.c7af3026.chunk.js"></script><script src="https://d1hi41nc56pmug.cloudfront.net/static/js/main.95a60b1c.chunk.js"></script></body></html>

Why sends your domain such a content?

Is this a blocking script? A parking script?

You have to remove that content.

It is just a basic HTML page in my root directory to confirm that my web page is working or not.

Honestly I was just training with my lab environment, I need to do same lab with ssl Certificate so I got stuck with ssl certificate.

I don’t understand what that means in relation to my question.

Like I said before, it's a basic cash page for GoDaddy. He doesn't actually have any hosting. Just click on the purchase part at the top and it'll take you straight to the GoDaddy broker service.

Update the Points to field to the IP address 34.102.136.180 .

@syedmujahed
Are you a student trying to do a lab work?

I would be happy to help though I am concerned though there may be a lot of basic things you don't have ready or understand. Your web page is parked right now. I can give you very specific instructions just to get a certificate, but you won't have anywhere to install it once you have it. Without a server of your own to serve your content, you will have nowhere to put the certificate or its private key. The first thing you need to be able to do is change your DNS A record to point (change the ip address) to a server that hosts your content. If you have a GoDaddy hosting package, you just need to run the setup for it and select your domain. If you have a server elsewhere already setup, you need to find out its ip address.

As an example, this is the DNS management page for my website:

Screenshot_20200811-032147_Samsung Internet1080×5827 717 KB

Right now your A record has the ip address 34.102.136.180, which is for GoDaddy parking.

It was really help to me.

Thank you for your support

You’re very welcome.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.