I’m infront of a mistery (to me atleast). I’m on Debian 8 with Apache, and have some Domains I’d like to renew, add SSL to. However I get the following:
“Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.”
My Certbot version is on 0.10.2 which is ancient.
Is there something new in the repository available? Because my updates/upgrades aren’t doing anything for it.If not, what do I install instead?
Please show the files in:
/etc/letsencrypt/renewal/
please check this :
is there one wildcard certificate?
If yes, wildcard certificates can only used with dns - 01 - validation.
And: Are some domains older, so they used tls-sni-01 - validation? This validation is deprecated and works only with renews, not with new domain names.
Most likely @romgo is correct and the problem is that the apache plugin in certbot 0.10.2 only supports the now deprecated tls-sni-01 validation method.
If you check https://certbot.eff.org/lets-encrypt/debianjessie-apache you will see that the instructions there have been updated with a workaround that should work in most cases:
sudo certbot --authenticator webroot --installer apacheThis topic was automatically closed 30 days after the last reply. New replies are no longer allowed.