Can't create new ssl

My domain is:

I ran this command:
sudo certbot certonly --webroot --agree-tos --email -d -w /home/domains/

It produced this output:
Failed authorization procedure. (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: MY-IP : Invalid response from 404

My web server is (include version):
Linux ns31127539 4.19.0-17-amd64 #1 SMP Debian 4.19.194-2 (2021-06-21) x86_64 GNU/Linux

The operating system my web server runs on is (include version):
Debian GNU/Linux 10 (buster)

I can login to a root shell on my machine (yes or no, or I don't know):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
certbot 0.31.0

maybe smth wrong with this line in my nginx config for this site?

location /.well-known/ { root /var/www/; }

Hello @xducker, welcome to the Let's Encrypt community. :slightly_smiling_face:

One observation is the DNS Name Servers are not well behaved.

  1. Hardenize Report:
  2. | DNSViz
  3. DNSSEC Analyzer -
  4. Zonemaster
  5. DNS Spy report for
1 Like

No. If I stop nginx and apache and run "Spin up a temporary webserver (standalone)" - Everything works and installs.

Kindly wait to see if there are more knowledgeable Let's Encrypt community volunteers willing to assist.


You stated the -w folder is /home/domains. But, it should be the root folder for that domain's challenge. You have that set to /var/www/ so the -w value should be that too.


Thank you so much!!!


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.