Create new certificate with www.mydomain.com


#1

Hello everybody,

Whene I try to create the certificate with www.freeodoo.com I get this error:

Failed authorization procedure. www.freeodoo.com (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for TLS-SNI-01 challenge. Requested a35781ecd8bdea23400f5f68db1a5f31.a155f4f032b13d80227fb28a17b5b088.acme.invalid from 213.186.33.5:443. Received 4 certificate(s), first certificate had names “mailconfig.ovh.net, www.mailconfig.ovh.net

IMPORTANT NOTES:

  • If you lose your account credentials, you can recover through
    e-mails sent to contact@freeodoo.com.

  • The following errors were reported by the server:

    Domain: www.freeodoo.com
    Type: unauthorized
    Detail: Incorrect validation certificate for TLS-SNI-01 challenge.
    Requested
    a35781ecd8bdea23400f5f68db1a5f31.a155f4f032b13d80227fb28a17b5b088.acme.invalid
    from X.X.X.X:443. Received 4 certificate(s), first certificate
    had names “mailconfig.ovh.net, www.mailconfig.ovh.net

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A record(s) for that domain
    contain(s) the right IP address.

  • Your account credentials have been saved in your Certbot
    configuration directory at /etc/letsencrypt. You should make a
    secure backup of this folder now. This configuration directory will
    also contain certificates and private keys obtained by Certbot so
    making regular backups of this folder is ideal.
    Howeever it works perfectly with domain freeodoo.com.
    So how can I create certificate with www.mydomain.com ?

Best regards


#2

@Hamza-Talibi

what client are you using

what is your domain ( so we can confirm a certificate was actually issued)

you know all those useful things that let us be useful to you :wink:


#3

my domain is www.freeodoo.com


#4

Hi @Hamza-Talibi

It looks like you already have a certificate and a web server running on that site.

You can do one of several things depending on your client (I am assuming it’s certbot)

The TLS-SNI challenge works by looking at a certificate served up by a webserver and checking if it matches the requested domain

A) Temporarily stop the web server so certbot can start a standalone web server which will serve the required certificates
B) Use a DNS or HTTP challenge

Review certbot documentation: https://certbot.eff.org/docs/using.html


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.