Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA. issues


#1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: rekishinet.net

I ran this command: sudo certbot --apache -d rekishinet.net

It produced this output: Client with the currently selected authenticator does not support any combination of challenges that will satisfy the CA.

My web server is (include version): apache2

The operating system my web server runs on is (include version): Debian 9

My hosting provider, if applicable, is: DNS is google domains

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): using cli for apache, control panel for wordpress site on it


#2

Hi @rekishi,

Please see


#3

Even after this, the error is that certbot times out when testing using http-01 with this error

Blockquote
IMPORTANT NOTES:


#4

…which is a completely unrelated issue. Your server doesn’t appear to be accessible via port 80. Either there isn’t a web server listening on that port, you have port 80 blocked, or your ISP has port 80 blocked.


#5

So us home-hosting users are just SOL for using certbot anymore?


#6

Not all ISPs block port 80, and some that do will allow you to request that it be unblocked.

There is also a DNS challenge method available where you can get a certificate by making changes to your DNS zone rather than by receiving an inbound connection on port 80.


#7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.