Certificate issue problem

Hi, i’m trying to renew my certificate issue but i got these message:

• Error issuing certificate
• Failed to issue certificate
• Updating challenge for www.acetaiavillaemma.com: acme: error code 403 “urn:ietf:params:acme:error:unauthorized”: Invalid response from http://www.acetaiavillaemma.com/.well-known/acme-challenge/j-TM01KJocViwhqOjnmnbs8swhT6lmh1qMdAT76CoIg [46.252.148.192]: “\n<!–[if lt IE 7 ]> <html class=“ie6” xmlns=“https://www.w3.org/1999/xhtml” xml:lang=“it-IT” lang=“it-IT” prefix=” (order URL: https://acme-v02.api.letsencrypt.org/acme/order/15451696/3030839768)

My domain is: www.acetaiavillaemma.com

How can i solve this problem?
Someone could help me?

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Hi, these are the requested information:

1. • My domain is “acetaiavillaemma.com”
     2.* i ran the command “issue”
     3.* it produced this output " * Error issuing certificate

• Failed to issue certificate
• Updating challenge for acetaiavillaemma.com: acme: error code 403 “urn:ietf:params:acme:error:unauthorized”: Invalid response from http://acetaiavillaemma.com/.well-known/acme-challenge/un7fSw-6IsYVVz1GJwP-i0FI7LyfP-qb9MX6dbrjZB0 [216.239.32.21]: "\n\n \n <meta name=viewport content=“initial-scale=1, minimum-scale=1, width=dev” (order URL: https://acme-v02.api.letsencrypt.org/acme/order/15451696/3031267892)

4.* my web server is netsons

5*.The operating system my web server runs on is: i don’t know

6.* my hosting provider is hostingweb62.netsons.net

7.*I can login to a root shell on my machine: I don’t know:

8.*I’m using a cpanel to manage my site that is on wordpress

9.*The version of my client is: I don’t know

Hi Andrea,

You have more than one A record in the DNS for your domain, pointing to completely different webservers: https://letsdebug.net/acetaiavillaemma.com/124148

This confuses the certificate validation process, because it causes Let’s Encrypt to randomly connect to the wrong webserver when trying to validate your domain.

This also causes visitors to randomly not see your website when they visit your domain.

$ dig +noall +answer acetaiavillaemma.com
acetaiavillaemma.com.   1785    IN      A       216.239.32.21
acetaiavillaemma.com.   1785    IN      A       216.239.36.21
acetaiavillaemma.com.   1785    IN      A       216.239.34.21
acetaiavillaemma.com.   1785    IN      A       89.40.173.251
acetaiavillaemma.com.   1785    IN      A       216.239.38.21

Of those IP addresses, only 89.40.173.251 is correct - your cPanel server.

You need to login to Enom and remove those other A records.

Thanks a lot. Now is clear.

_Az could you tell me how to change this parameters from Enom?
Thanks a lot

I’m not really sure - I’ve never been a customer of Enom. They have a help page on the matter here with some pictures: https://help.enom.com/hc/en-us/articles/115000474012-How-to-Change-DNS-Host-Records

Thanks a lot for your help

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.