Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: bmp.ie + thinkpeople.co.uk
I ran this command: sudo certbot certonly -d $DOMAIN -d $WILDCARD --manual --preferred-challenges http
It produced this output: Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA. You may need to use an authenticator plugin that can do challenges over DNS.
My web server is (include version): Apache 2.4.46
The operating system my web server runs on is (include version):Linux Debian 4.19.160-2 (2020-11-28)
My hosting provider, if applicable, is: AWS Lightsail
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no, terminal
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you're using Certbot): certbot 0.31.0
I have this website and another running on Lightsail that are both due for renewal, thinkpeople.co.uk has already expired. Both are currently using DNS for authentication but I do not have direct access to their DNS and have to contact the client's IT people each time which is not ideal. I have read I can instead place a file in the server's root which would be more appropriate in this situation and so I want to change from using TXT records to this instead.
As per above I have tried what commands I have found but have had no success on either site. Any help is much appreciated. Thanks.