Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command: sudo certbot --nginx --nginx-server-root=/usr/local/nginx/conf/
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Please enter the domain name(s) you would like on your certificate (comma and/or
space separated) (Enter 'c' to cancel): s49.iems5718.ie.cuhk.edu.hk
Requesting a certificate for s49.iems5718.ie.cuhk.edu.hk
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: xxxxxxxxxxx
Type: unauthorized
Detail: x.x.x.x: Invalid response from http://xxxxxxxxxxxx/.well-known/acme-challenge/6rM6GMFFp58B9CmX9pf_CZOWXgNfr8abq2Am1p4nOtY: 403
My web server is (include version): nginx 1.26.3
The operating system my web server runs on is (include version):ubuntu 22.04
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): 3.2.0
