Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
grendel.no
I ran this command:
certbot --apache certonly -w ~vds/www/blog.grendel.no -d grendel.no -d blog.grendel.no -d r.grendel.no -d www.grendel.no -d ptsd-boken.grendel.no
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Cert is due for renewal, auto-renewing...
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for grendel.no
http-01 challenge for blog.grendel.no
http-01 challenge for r.grendel.no
http-01 challenge for www.grendel.no
http-01 challenge for ptsd-boken.grendel.no
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. blog.grendel.no (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://blog.grendel.no/.well-known/acme-challenge/x9j-C_e9fRLKMuraGRnydZrzRH01xcpHOiBS9Xd1N8E: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p", r.grendel.no (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://r.grendel.no/.well-known/acme-challenge/gFw6LAs6jcEpnaMaCabe5haHzLvrFoDE1Nmzuu4uG6U: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p", ptsd-boken.grendel.no (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://ptsd-boken.grendel.no/.well-known/acme-challenge/MygHLXyd5dLIcKxA6YtbHgCS0M2jLN82ANtidZTTLoY: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p", grendel.no (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://grendel.no/.well-known/acme-challenge/0AelLT-A9_AMMZ_RFtxQTSs6FKFNXF38vud--eBDPU8: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p", www.grendel.no (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.grendel.no/.well-known/acme-challenge/8fyCxRWjs0nSS2mTQ2qioSkY5okidL4U4OWl6i3gW4M: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p"
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: blog.grendel.no
Type: unauthorized
Detail: Invalid response from
http://blog.grendel.no/.well-known/acme-challenge/x9j-C_e9fRLKMuraGRnydZrzRH01xcpHOiBS9Xd1N8E:
"<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p"
Domain: r.grendel.no
Type: unauthorized
Detail: Invalid response from
http://r.grendel.no/.well-known/acme-challenge/gFw6LAs6jcEpnaMaCabe5haHzLvrFoDE1Nmzuu4uG6U:
"<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p"
Domain: ptsd-boken.grendel.no
Type: unauthorized
Detail: Invalid response from
http://ptsd-boken.grendel.no/.well-known/acme-challenge/MygHLXyd5dLIcKxA6YtbHgCS0M2jLN82ANtidZTTLoY:
"<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p"
Domain: grendel.no
Type: unauthorized
Detail: Invalid response from
http://grendel.no/.well-known/acme-challenge/0AelLT-A9_AMMZ_RFtxQTSs6FKFNXF38vud--eBDPU8:
"<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p"
Domain: www.grendel.no
Type: unauthorized
Detail: Invalid response from
http://www.grendel.no/.well-known/acme-challenge/8fyCxRWjs0nSS2mTQ2qioSkY5okidL4U4OWl6i3gW4M:
"<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p"
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
My web server is (include version):
Apache/2.4.29 (Ubuntu)
The operating system my web server runs on is (include version):
Ubuntu 18.04 LTS
My hosting provider, if applicable, is:
www.webhuset.no
I can login to a root shell on my machine (yes or no, or I don’t know):
Yes.
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
No.
Additional info:
#apachectl -S
VirtualHost configuration:
46.226.13.198:80 is a NameVirtualHost
default server grendel.no (/etc/apache2/sites-enabled/000-grendel.no.conf:1)
port 80 namevhost grendel.no (/etc/apache2/sites-enabled/000-grendel.no.conf:1)
alias www.grendel.no
alias blog.grendel.no
alias r.grendel.no
alias ptsd-boken.grendel.no
alias test.grendel.no
alias beta.grendel.no
port 80 namevhost api.grendel.no (/etc/apache2/sites-enabled/api.grendel.no.conf:1)
port 80 namevhost omvendtpedagogikk.no (/etc/apache2/sites-enabled/omvendtpedagogikk.no.conf:1)
alias omvendtpedagogikk.no
alias www.omvendtpedagogikk.no
port 80 namevhost omvendtpsykologi.no (/etc/apache2/sites-enabled/omvendtpsykologi.no.conf:1)
alias omvendtpsykologi.no
alias www.omvendtpsykologi.no
port 80 namevhost personlighetstesting.no (/etc/apache2/sites-enabled/personlighetstesting.no.conf:1)
alias personlighetstesting.no
alias www.personlighetstesting.no
46.226.13.198:443 is a NameVirtualHost
default server grendel.no (/etc/apache2/sites-enabled/000-grendel.no-le-ssl.conf:2)
port 443 namevhost grendel.no (/etc/apache2/sites-enabled/000-grendel.no-le-ssl.conf:2)
alias www.grendel.no
alias blog.grendel.no
alias r.grendel.no
alias ptsd-boken.grendel.no
alias test.grendel.no
alias beta.grendel.no
port 443 namevhost api.grendel.no (/etc/apache2/sites-enabled/api.grendel.no-le-ssl.conf:2)
port 443 namevhost omvendtpedagogikk.no (/etc/apache2/sites-enabled/omvendtpedagogikk.no-le-ssl.conf:2)
alias omvendtpedagogikk.no
alias www.omvendtpedagogikk.no
port 443 namevhost omvendtpsykologi.no (/etc/apache2/sites-enabled/omvendtpsykologi.no-le-ssl.conf:2)
alias omvendtpsykologi.no
alias www.omvendtpsykologi.no
port 443 namevhost personlighetstesting.no (/etc/apache2/sites-enabled/personlighetstesting.no-le-ssl.conf:2)
alias personlighetstesting.no
alias www.personlighetstesting.no
port 443 namevhost shiny.grendel.no (/etc/apache2/sites-enabled/shiny.grendel.no.conf:2)
ServerRoot: "/etc/apache2"
Main DocumentRoot: "/var/www/html"
Main ErrorLog: "/var/log/apache2/error.log"
Mutex mpm-accept: using_defaults
Mutex cache-socache: using_defaults
Mutex authdigest-opaque: using_defaults
Mutex watchdog-callback: using_defaults
Mutex proxy-balancer-shm: using_defaults
Mutex rewrite-map: using_defaults
Mutex ssl-stapling-refresh: using_defaults
Mutex authdigest-client: using_defaults
Mutex ssl-stapling: using_defaults
Mutex ldap-cache: using_defaults
Mutex proxy: using_defaults
Mutex authn-socache: using_defaults
Mutex ssl-cache: using_defaults
Mutex default: dir="/var/lock/apache2" mechanism=fcntl
PidFile: "/var/run/apache2/apache2.pid"
Define: DUMP_VHOSTS
Define: DUMP_RUN_CFG
Define: ENABLE_USR_LIB_CGI_BIN
User: name="www-data" id=33
Group: name="www-data" id=33
Any and all hints and suggestions appreciated.
Thank you.