I am using certbot on a box loaded with Ubuntu 18.04. I can issue the following command:
certbot certonly --standalone
and after starting the process I am prompted for my domain. Entering the domain as prompted the process continues, thendisplays the domain with a directory path and file name which it appears to create. The path/filename is characterized by mydomainname/well-known/acme-challenge/<lengthy_hex_character_string>.
There is a second hex string even longer which instructions indicate the user should copy and paste into a file with the with <lengthy_hex_character_string> referenced above as the filename.
Dutifully following the instructions I create the path off of my domain on the hosts site and upload the named file created with long hex string in the folder specified.
Continuing, certbot seems to find the hex string file in the location, creates the signed certificate and stows it on my local machine. It posts the directories where I can find the key and signed certificate.
I am a happy camper except for I did not use the Certificate Signing Request (CSR) produced with ‘OpenSSL’ in house. So going back the string ‘–csr’ is added along with the location/filename of the CSR.
Running certbot with the added switch ‘–csr’ and location info/filename, certbot takes off, then the familiar prompt asking for the domain name appears. Entering the domain name and resuming the signed certificate process the error message:
Failed authorization procedure. networksecurityassoc.com (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://networksecurityassoc.com/.well-known/acme-challenge/SAgofOcv7255VCMK8gvBrGtX0TQWZ5LEblB3oW6hmvE: q%!(EXTRA string=
404 Not Found404 Not Found
- Code: NoSuchKey
- Message: The sp)
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: networksecurityassoc.com
404 Not Found
Type: unauthorized
Detail: Invalid response from
http://networksecurityassoc.com/.well-known/acme-challenge/SAgofOcv7255VCMK8gvBrGtX0TQWZ5LEblB3oW6hmvE:
q%!(EXTRA string=404 Not Found
- Code: NoSuchKey
appears. I can create the path and enter the file on the host but where do I find the the data for entry into the file before encountering the error message and the path info?
Wilson
-