Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: www.enameling.com
I ran this command: certbot renew --dry-run
It produced this output:
root@eureka:~# certbot renew --dry-run
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Processing /etc/letsencrypt/renewal/cbboff.org-0001.conf
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator apache, Installer None
Simulating renewal of an existing certificate for cbboff.org
Performing the following challenges:
http-01 challenge for cbboff.org
Waiting for verification...
Cleaning up challenges
new certificate deployed without reload, fullchain is
/etc/letsencrypt/live/cbboff.org-0001/fullchain.pem
Processing /etc/letsencrypt/renewal/cbboff.org.conf
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator apache, Installer apache
Simulating renewal of an existing certificate for cbboff.org and 5 more domains
Performing the following challenges:
http-01 challenge for enameling.com
http-01 challenge for www.enameling.com
http-01 challenge for cbboff.org
http-01 challenge for whitesmithinc.com
http-01 challenge for www.cbboff.org
http-01 challenge for www.whitesmithinc.com
Waiting for verification...
e[31mChallenge failed for domain enameling.come[0m
e[31mChallenge failed for domain www.enameling.come[0m
http-01 challenge for enameling.com
http-01 challenge for www.enameling.com
Cleaning up challenges
e[31mFailed to renew certificate cbboff.org with error: Some challenges have failed.e[0m
Processing /etc/letsencrypt/renewal/enameling.com.conf
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator apache, Installer apache
Simulating renewal of an existing certificate for enameling.com and www.enameling.com
Performing the following challenges:
http-01 challenge for enameling.com
http-01 challenge for www.enameling.com
Waiting for verification...
e[31mChallenge failed for domain enameling.come[0m
e[31mChallenge failed for domain www.enameling.come[0m
http-01 challenge for enameling.com
http-01 challenge for www.enameling.com
Cleaning up challenges
e[31mFailed to renew certificate enameling.com with error: Some challenges have failed.e[0m
Processing /etc/letsencrypt/renewal/whitesmithinc.com.conf
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator apache, Installer apache
Simulating renewal of an existing certificate for whitesmithinc.com and www.whitesmithinc.com
Performing the following challenges:
http-01 challenge for whitesmithinc.com
http-01 challenge for www.whitesmithinc.com
Waiting for verification...
Cleaning up challenges
new certificate deployed with reload of apache server; fullchain is
/etc/letsencrypt/live/whitesmithinc.com/fullchain.pem
Processing /etc/letsencrypt/renewal/www.whitesmithinc.com.conf
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator apache, Installer apache
Simulating renewal of an existing certificate for www.whitesmithinc.com
Performing the following challenges:
http-01 challenge for www.whitesmithinc.com
Waiting for verification...
Cleaning up challenges
new certificate deployed with reload of apache server; fullchain is
/etc/letsencrypt/live/www.whitesmithinc.com/fullchain.pem
The following simulated renewals succeeded:
/etc/letsencrypt/live/cbboff.org-0001/fullchain.pem (success)
/etc/letsencrypt/live/whitesmithinc.com/fullchain.pem (success)
/etc/letsencrypt/live/www.whitesmithinc.com/fullchain.pem (success)
e[31mThe following simulated renewals failed:e[0m
e[31m /etc/letsencrypt/live/cbboff.org/fullchain.pem (failure)
/etc/letsencrypt/live/enameling.com/fullchain.pem (failure)e[0m
e[31m2 renew failure(s), 0 parse failure(s)e[0m
e[1m
IMPORTANT NOTES:
e[0m - The following errors were reported by the server:
Domain: enameling.com
Type: unauthorized
Detail: 162.191.242.49: Invalid response from
http://enameling.com/.well-known/acme-challenge/IxZHJzR_DuIdDK-JTlmtPv8YJwHq6B5AMomGyzobRkg:
403
Domain: www.enameling.com
Type: unauthorized
Detail: 162.191.242.49: Invalid response from
http://www.enameling.com/.well-known/acme-challenge/XqzBLzTaUuij47ge_brSGQZHPsZtfHAV01I5lsPn2uk:
403
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
-
The following errors were reported by the server:
Domain: enameling.com
Type: unauthorized
Detail: 162.191.242.49: Invalid response from
http://enameling.com/.well-known/acme-challenge/ey9C6UbJbKaYiPOBAX4HgSksbEY6iQn9jt2Cc-xYFBg:
403Domain: www.enameling.com
Type: unauthorized
Detail: 162.191.242.49: Invalid response from
http://www.enameling.com/.well-known/acme-challenge/kPO6hs89ECLCkqhb2ayAudJm932-2ILs2yQl9ox3T2U:
403To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
My web server is (include version): apache2 2.4.56-1~deb11
The operating system my web server runs on is (include version): debian 5.10.191-1
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 1.12.0