Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
xorex.rocks
I ran this command:
Virtualmin:Server Configuration:SSL Certificate:Let’s Encrypt:Request certificate for: Domain names listed here: xorex.rocks
It produced this output:
Requesting a certificate for xorex.rocks from Let’s Encrypt …
… request failed : Web-based validation failed : Failed to request certificate :
Traceback (most recent call last):
File “/usr/share/webmin/webmin/acme_tiny.py”, line 198, in
main(sys.argv[1:])
File “/usr/share/webmin/webmin/acme_tiny.py”, line 194, in main
signed_crt = get_crt(args.account_key, args.csr, args.acme_dir, log=LOGGER, CA=args.ca, disable_check=args.disable_check, directory_url=args.directory_url, contact=args.contact)
File “/usr/share/webmin/webmin/acme_tiny.py”, line 143, in get_crt
raise ValueError(“Wrote file to {0}, but couldn’t download {1}: {2}”.format(wellknown_path, wellknown_url, e))
ValueError: Wrote file to /home/xorex.rocks/public_html/.well-known/acme-challenge/7chSbLPN08aQA_laf1bLbXcriW34paoJhWxrBccXn6Q, but couldn’t download http://xorex.rocks/.well-known/acme-challenge/7chSbLPN08aQA_laf1bLbXcriW34paoJhWxrBccXn6Q: Error:
Url: http://xorex.rocks/.well-known/acme-challenge/7chSbLPN08aQA_laf1bLbXcriW34paoJhWxrBccXn6Q
Data: None
Response Code: 404
Response:
Not Found
The requested URL was not found on this server.
DNS-based validation failed : Failed to request certificate :
usage: acme_tiny.py [-h] --account-key ACCOUNT_KEY --csr CSR --acme-dir
ACME_DIR [–quiet] [–disable-check]
[–directory-url DIRECTORY_URL] [–ca CA]
[–contact [CONTACT [CONTACT …]]]
acme_tiny.py: error: argument --acme-dir is required
My web server is (include version):
apache2 (2.4.38)
The operating system my web server runs on is (include version):
Debian 10
My hosting provider, if applicable, is:
OVH
I can login to a root shell on my machine (yes or no, or I don’t know):
Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
Virtualmin (6.08)
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot):
None. Managed by Virtualmin
Hi,
Fresh install of Virtualmin on a vanilla Debian 10. Updated and upgraded. Installed first virtual server (xorex.rocks) with these settings:
Enabled features
[DNS domain enabled?]
[Mail for domain enabled?]
[Apache website enabled?]
[Webalizer reporting enabled?]
[Apache SSL website enabled?]
[MySQL database enabled?]
[IP-based virtual FTP enabled?]
[Spam filtering enabled?]
[Virus filtering enabled?]
[Webmin login enabled?]
AWstats reporting
DAV login
When I try to establish the certificate the error tells me it cannot find the .well known/acme key.
Googled and read forums and it appears the redirection is preventing the key being read (but not written?).
Although I have added a specific redirect it does not appear to work and I do not know (or want to) remove the global redirect unless I can do it temporarily and replace it after establishing the certificate so that it auto renews. In the past this has just worked so I do not know why it is given me problems.
BTW: Clicking the link above for the key file takes me to the http site (which does not redirect for some reason). When I then approve access to the site it fails as there are too many redirects (from http to that’s and back again I assume?).
Advice appreciated.