Could not issue an SSL/TLS certificate for erp.dental.mpgi.net

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:
erp.dental.mpgi.net
erp.mpce.mpgi.net

I ran this command:
I have tried “Re-issue” certificate option from plesk but getting the error.

It produced this output:
Could not issue an SSL/TLS certificate for erp.dental.mpgi.net
Details
Could not issue a Let’s Encrypt SSL/TLS certificate for erp.dental.mpgi.net . Authorization for the domain failed.
Details
Invalid response from https://acme-v02.api.letsencrypt.org/acme/authz-v3/6876559596.
Details:
Type: urn:ietf:params:acme:error:connection
Status: 400
Detail: Fetching https://acme-challenge.localhost/.well-known/acme-challenge/KYTMmw1kNA1Emwq58L9Stnb3nxte_oObymLDwnw68yI: Invalid hostname in redirect target, must end in IANA registered TLD

My web server is (include version):

The operating system my web server runs on is (include version):
Windows Server 2012

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):
I don’t know

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
Yes, I am using plesk to manage the sites.

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

1 Like

Hi @aamir.khan099

your redirect is wrong, see your check, ~~30 minutes old - https://check-your-website.server-daten.de/?q=erp.dental.mpgi.net#url-checks

http://erp.dental.mpgi.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 131.153.76.58 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0 302 https://acme-challenge.localhost/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 102,82 % 0.404
E
Visible Content: Object moved to here .

http://www.erp.dental.mpgi.net/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 131.153.76.58 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0 302 https://acme-challenge.localhost/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 102,82 % 0.390
E

http + /.well-known/acme-challenge/random-filename is redirected to the not global defined domain name acme-challenge.localhost.

Find that redirect and change it.

Looks like you have an additional subdomain as target. That’s possible, but the complete domain name is required.

2 Likes

Hi JuergenAuer,

Thanks for the reply. As you suggested below, i understand its wrong - but the same is working for other sub-domain on mpgi.net, the only issue is with erp.dental.mpgi.net and erp.mpce.mpgi.net :

http + /.well-known/acme-challenge/random-filename is redirected to the not global defined domain name acme-challenge.localhost .

They all are hosted on the same server, could you please suggest “Find that redirect and change it.” - where should i find this, as far as I am aware, there is a website on IIS with the name “acme-challenge” which pointing to http binding to acme-challenge.localhost

Could you please suggest something, so that it should affect the other application on the same server.