Cannot renew lets encrypt certificate on plesk


#1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:stevenknoop.co.za

Getting the error below when trying to renew the SSL cert:

Error: Could not issue a Let’s Encrypt SSL/TLS certificate for stevenknoop.co.za. Authorization for the domain failed.
Details
Invalid response from https://acme-v01.api.letsencrypt.org/acme/authz/S_KMdURoLagyV7PfvZyeEp-2qiaRXlEjfRe4OeAOqoU.
Details:
Type: urn:acme:error:connection
Status: 400
Detail: Fetching https://www.stevenknoop.co.za/.well-known/acme-challenge/OlhuCBhndVu4nlCjMfJgMTsxtLttOBxEr5znCfUKGf0: Connection reset by peer

The operating system my web server runs on is (include version):win2012

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):no, only powershell

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):plesk


#2

Hi,

The problem is on your server side.

Your https connection to https://www.stevenknoop.co.za/ is posing “(35) schannel: failed to receive handshake, SSL/TLS connection failed” (No matter what url visited)

Please check your ASP.net config or Plesk config.

Thank you


#3

Thank you.

What do I need to check for?

Regards


#4

Ensure your 443 vhost config contains enough for the TLS to run.

  • protocols (TLSv1.2, etc.)
  • ciphers
  • certificate (private key and public key)

#5

Hi

Yes it does. I have other sites on there whereby the SSL is working fine.
This was working but when I try and renew the cert, I get that error.

Regards


#6

Please recheck the config - look for any typos or punctuation errors.


#7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.