2 weeks ago i was using cerbot 1.7.0 (installed not from snap) and flawlessly create several virtualhost and valid letsencrypt. from then, i upgrade to certbot 1.9.0, i do not create any virtualhost until now, and then i notice that creation of new SSL from LE are broken, showing error below, as the DNS record doesn't valid, however the DNS record is valid. there is no problem when I create virtualhost from current domain on the another CentOS server with certbot 1.7.0. also the server already running certbot for 144 day, so i think there is problem with the latest certbot (1.9.0).
i'm planning to upgrade 1.10 using snap. but i'm going the explore more before upgrading since i'm not convinced that upgrading to 1.10 will solve the problem.
My domain is: teacher.e-ducare.id
I ran this command: cerbot --nginx -d teacher.e-ducare.id , cerbot renew
It produced this output:
Domain: teacher.e-ducare.id
Type: unauthorized
Detail: Invalid response from http://teacher.e-ducare.id/.well-known/acme-challenge/gmpfgm3Sr6dHXy7vqLZjnkJhc_32KuHZ9ygknmeoGoo [128.199.96.58]: "<html>\r\n<head><title>404 Not Found</title></head>\r\n<body>\r\n<center><h1>404 Not Found</h1></center>\r\n<hr><center>nginx</center>\r\n"
To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address.
2020-12-14 17:05:26,697:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File "/usr/lib/python2.7/site-packages/certbot/_internal/auth_handler.py", line 91, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python2.7/site-packages/certbot/_internal/auth_handler.py", line 180, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
AuthorizationError: Some challenges have failed.
2020-12-14 17:05:26,697:DEBUG:certbot._internal.error_handler:Calling registered functions
2020-12-14 17:05:26,697:INFO:certbot._internal.auth_handler:Cleaning up challenges
2020-12-14 17:05:29,464:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/certbot", line 9, in <module>
load_entry_point('certbot==1.9.0', 'console_scripts', 'certbot')()
File "/usr/lib/python2.7/site-packages/certbot/main.py", line 15, in main
return internal_main.main(cli_args)
File "/usr/lib/python2.7/site-packages/certbot/_internal/main.py", line 1362, in main
return config.func(config, plugins)
File "/usr/lib/python2.7/site-packages/certbot/_internal/main.py", line 1108, in run
certname, lineage)
File "/usr/lib/python2.7/site-packages/certbot/_internal/main.py", line 122, in _get_and_save_cert
lineage = le_client.obtain_and_enroll_certificate(domains, certname)
File "/usr/lib/python2.7/site-packages/certbot/_internal/client.py", line 418, in obtain_and_enroll_certificate
cert, chain, key, _ = self.obtain_certificate(domains)
File "/usr/lib/python2.7/site-packages/certbot/_internal/client.py", line 351, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File "/usr/lib/python2.7/site-packages/certbot/_internal/client.py", line 398, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
File "/usr/lib/python2.7/site-packages/certbot/_internal/auth_handler.py", line 91, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python2.7/site-packages/certbot/_internal/auth_handler.py", line 180, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
AuthorizationError: Some challenges have failed.
2020-12-14 17:05:29,465:ERROR:certbot._internal.log:Some challenges have failed.
My web server is (include version): Nginx 1.16.1
The operating system my web server runs on is (include version): CentOS Linux release 7.9.2009
My hosting provider, if applicable, is: digital Ocean
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 1.9.0