Im successful generating staging certs, what when i remove the certs and change to the production directory CA=“https://acme-v02.api.letsencrypt.org/directory” and execute /usr/bin/dehydrated -c i receive the challenge invalid error and it it times out.
Below is the status from the staging directory CA=“https://acme-stagging-v02.api.letsencrypt.org/directory”
processing gregofamily.org with alternative names: www.gregofamily.org
- Creating new directory /etc/dehydrated/certs/gregofamily.org …
- Signing domains…
- Generating private key…
- Generating signing request…
- Requesting new certificate order from CA…
- Received 2 authorizations URLs from the CA
- Handling authorization for gregofamily.org
- Handling authorization for www.gregofamily.org
- 2 pending challenge(s)
- Deploying challenge tokens…
- Responding to challenge for gregofamily.org authorization…
- Challenge is valid!
- Responding to challenge for www.gregofamily.org authorization…
- Challenge is valid!
- Cleaning challenge tokens…
- Requesting certificate…
- Checking certificate…
- Done!
- Creating fullchain.pem…
- Done!
My domain is: gregofamily.org www.gregofamily.org
I ran this command: /usr/bin/dehydrated -c
It produced this output:
This is the out put from the production directory CA=“https://acme-v02.api.letsencrypt.org/directory”
ERROR: Challenge is invalid! (returned: invalid) (result: {
“type”: “http-01”,
“status”: “invalid”,
“error”: {
“type”: “urn:ietf:params:acme:error:connection”,
“detail”: “Fetching https://www.gregofamily.org/.well-known/acme-challenge/8lHN_OPPX1W9mrGMNh_N98oCeMQT_StwjCY3IlTfaks: Timeout during connect (likely firewall problem)”,
“status”: 400
My web server is (include version): apache 2.4
The operating system my web server runs on is (include version): slackware current
My hosting provider, if applicable, is: n/a
I can login to a root shell on my machine (yes or no, or I don’t know): yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot): dehydrated 0.6.5