I just want to create a certificate for my SBS2010 (which is a 2008R2) to access the Outlook-Web-Access.
My login is https://remote.mydomain.com/owa
What I did:
- downloaded and extracted win-acme.v2.0.5.246.zip
- run cmd.exe as admin in the extracted folder
- created C:\inetpub\wwwroot\.well-known\acme-challenge
- put in the configcheck file
- created a web.config with
- enabled port 80 on the firewall.
The server is running on a private ipv4 net and a single ip is forwarded to the server.
Now I can fetch http://remote.mydom.com/.well-known/acme-challenge/configcheck and get the content of the configcheck-file
Then I run wacs.exe:
- M: create with adv. options
- 4: Manually input host names
- put in cname: remote.mydom.com
- 5: [http-01] Save file on local or network path
- entered: c:\inetpub\wwwroot
- copy default web.config no
- 2: Standard RSA key pair
- 2: Windows Certificate Store
- 1: Create or update https bindings in IIS
- 1: Default Web Site
and always end up with something like:
[WARN] First chance error calling into ACME server, retrying with new nonce…
[INFO] Authorize identifier: remote.mydom.com
[INFO] Authorizing remote.hobel.at using http-01 validation (FileSystem)
[INFO] Answer should now be browsable at http://remote.mydom.com/.well-known/acme-challenge/1jGe-TbI4o3KVQNPqSbKUYsQEhtKbJgFWqZVGOusUg0
[INFO] Preliminary validation looks good, but ACME will be more thorough…
[EROR] {
“type”: “urn:ietf:params:acme:error:connection”,
“detail”: “Fetching http://remote.mydom.com/.well-known/acme-challenge/1jGe-TbI4o3KVQNPqSbKUYsQEhtKbJgFWqZVGOusUg0: Connection refused”,
“status”: 400
}
[EROR] Authorization result: invalid
[EROR] Create certificate failed: Authorization failed
I see the generated file for a second in the explorer.
If I put in manually a file with this name into the folder I can fetch it (so I get not a HTTP-400 Error)
Also tried to fetch from outside to access this url which was also working
And now I just get:
[WARN] First chance error calling into ACME server, retrying with new nonce…
[EROR] AcmeProtocolException: Error creating new order :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/
Also tried with method “4: http-01” -> same result
Also tried “N: Create new certificate” -> this wont offer me the Default-Web-Site
Any ideas how to fix this?