Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: circusofthings.com
I ran this command: sudo certbot certonly --force-renew -d circusofthings.com -d www.circusofthings.com
(option 3, path: /var/lib/tomcat7/webapps/ROOT/ where my .pfx currently working file is)
It produced this output:
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. circusofthings.com (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching https://circusofthings.com.well-known/acme-challenge/IfCzZ2FQ36I51BkpgYZPyGJ_l7LI5lp0Sai9UYzJUNk: Invalid hostname in redirect target, must end in IANA registered TLD, www.circusofthings.com (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.circusofthings.com/.well-known/acme-challenge/WtDlKF5iZ3kJZSP6pzJWPhds5Ur42hG67bM6kFjDcyA [31.193.227.136]: “\n\n404 Not Found\n\n
Not Found
\n<p”(Suspicious that is fetching to: https://circusofthings.com.well-known/acme-challenge… lost “/”?)
My web server is (include version):
Apache Tomcat/7.0.52 (Ubuntu)
The operating system my web server runs on is (include version):
Ubuntu 14.04
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don’t know):
yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
No
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot):
certbot 0.28.0