Can't create new ssl

Suomi · June 5, 2023, 2:15pm

My domain is:

I ran this command:
sudo certbot certonly --webroot --agree-tos --email mail@gmail.com -d chienavis.com -w /home/domains/

It produced this output:
Failed authorization procedure. chienavis.com (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: MY-IP : Invalid response from http://chienavis.com/.well-known/acme-challenge/GQC3lMkQDCxSt69A7qU5ySEgASOj52DMyCTlyjbQDFg: 404

My web server is (include version):
Linux ns31127539 4.19.0-17-amd64 #1 SMP Debian 4.19.194-2 (2021-06-21) x86_64 GNU/Linux

The operating system my web server runs on is (include version):
Debian GNU/Linux 10 (buster)

I can login to a root shell on my machine (yes or no, or I don't know):
YES

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
certbot 0.31.0

Suomi · June 5, 2023, 2:32pm

maybe smth wrong with this line in my nginx config for this site?

location /.well-known/ { root /var/www/; }

Bruce5051 · June 5, 2023, 2:33pm

Hello @xducker, welcome to the Let's Encrypt community.

One observation is the DNS Name Servers are not well behaved.

Suomi · June 5, 2023, 2:35pm

No. If I stop nginx and apache and run "Spin up a temporary webserver (standalone)" - Everything works and installs.

Bruce5051 · June 5, 2023, 2:36pm

Kindly wait to see if there are more knowledgeable Let's Encrypt community volunteers willing to assist.

MikeMcQ · June 5, 2023, 3:13pm

You stated the -w folder is /home/domains. But, it should be the root folder for that domain's challenge. You have that set to /var/www/ so the -w value should be that too.

Suomi · June 5, 2023, 3:21pm

Thank you so much!!!

system · July 5, 2023, 3:21pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.