Certbot manual from other computer - Failed authentication procedure


#1

I am trying to generate a certificate from my macbook so I can add this to my webserver for a specific domain. I do this using this command:

sudo certbot --manual -d example.com certonly

After filling in my e-mail, accepting tos, etc; it gives me this error:

`Failed authorization procedure. example.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://example.com/.well-known/acme-challenge/BLF92v_Z7wa9Tp2-IP85LWw1WXskQbm4dBaLIqt6fOU: "

<html lang="nl-NL" prefix="og: http://ogp.me/ns#" class=" html_stretched responsive av-preloader-disabled av-def"`

I am not getting what its trying to do here. I have manually made the folders /.well-known/acme-challenge/ and added a test file in it. Did this to check if it was accessable by browsing to it, and it is.

What am I supposed to do now? The documentation about manual isn’t very clear about this (its just a few lines of text).


#2

Is the macbook also the webserver?

It sounds like it is not, the response certbot says it got from the webserver looks like the start of an error page.
In this thread https://community.letsencrypt.org/t/single-certificate-for-sub-domains-pointing-to-different-ip-addresses/21764/7 I have a post where I show how to run certbot from a machine that is not the webserver.
Basically you need to need to mount the webroot so that certbot has write access to it; Then certbot can prove to letsencrypt that it has write access to the webroot.


#3

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.