Description Failed to obtain an SSL certificate for Nginx using acme.sh

Help
1

This is my acme.sh.log。
Server: nginx
Date: Wed, 12 Jun 2024 12:42:06 GMT
Content-Type: application/json
Content-Length: 449
Connection: keep-alive
Replay-Nonce: YKDgfiGPmv8NYCCbo4ZpMPVOJ1p8W37orrjALn8rTTI
Cache-Control: max-age=0, no-cache, no-store
Access-Control-Allow-Origin: *
Link: https://acme.zerossl.com/v2/DV90;rel="index"
Retry-After: 86400
Strict-Transport-Security: max-age=15724800; includeSubDomains
'
[Wed Jun 12 20:42:13 CST 2024] code='200'
[Wed Jun 12 20:42:13 CST 2024] original='{"identifier":{"type":"dns","value":"dc.chinarept.com"},"status":"pending","expires":"2024-07-12T11:19:00Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/GatbM4FRCJ9QR2sdX7TKVg","status":"processing","token":"xjRDcha5UcNhr8ui-LH1r8pDkDpa5JdqmROrhKxKxBU"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/Cmz3JZ0EuHQrwAcJKn_zQg","status":"pending","token":"vVSqQwR8vbEaha7xZYM4nrLV-VK7dk0jVaqW0thoc8k"}]}'
[Wed Jun 12 20:42:13 CST 2024] response='{"identifier":{"type":"dns","value":"dc.chinarept.com"},"status":"pending","expires":"2024-07-12T11:19:00Z","challenges":[{"type":"http-01","url":"https://acme.zerossl.com/v2/DV90/chall/GatbM4FRCJ9QR2sdX7TKVg","status":"processing","token":"xjRDcha5UcNhr8ui-LH1r8pDkDpa5JdqmROrhKxKxBU"},{"type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/Cmz3JZ0EuHQrwAcJKn_zQg","status":"pending","token":"vVSqQwR8vbEaha7xZYM4nrLV-VK7dk0jVaqW0thoc8k"}]}'
[Wed Jun 12 20:42:13 CST 2024] dc.chinarept.com:Timeout
[Wed Jun 12 20:42:13 CST 2024] Skip for removelevel:
[Wed Jun 12 20:42:13 CST 2024] pid
[Wed Jun 12 20:42:13 CST 2024] _restoreNginx
[Wed Jun 12 20:42:13 CST 2024] NGINX_RESTORE_VLIST='dc.chinarept.com#/opt/nginx/nginx.conf#/root/.acme.sh/dc.chinarept.com_ecc/backup/dc.chinarept.com.nginx.conf,'
[Wed Jun 12 20:42:13 CST 2024] ng_entry='dc.chinarept.com#/opt/nginx/nginx.conf#/root/.acme.sh/dc.chinarept.com_ecc/backup/dc.chinarept.com.nginx.conf'
[Wed Jun 12 20:42:13 CST 2024] Restoring from /root/.acme.sh/dc.chinarept.com_ecc/backup/dc.chinarept.com.nginx.conf to /opt/nginx/nginx.conf
[Wed Jun 12 20:42:13 CST 2024] Reload nginx
[Wed Jun 12 20:42:13 CST 2024] _clearupdns
[Wed Jun 12 20:42:13 CST 2024] dns_entries
[Wed Jun 12 20:42:13 CST 2024] skip dns.
[Wed Jun 12 20:42:13 CST 2024] _on_issue_err
[Wed Jun 12 20:42:13 CST 2024] Please check log file for more details: /root/.acme.sh/acme.sh.log
[Wed Jun 12 20:42:13 CST 2024] _chk_vlist='dc.chinarept.com#xjRDcha5UcNhr8ui-LH1r8pDkDpa5JdqmROrhKxKxBU.5w2k4ULdAUaHaTypKKz_Vfa0MTpSihAMjGkQhyzQznk#https://acme.zerossl.com/v2/DV90/chall/GatbM4FRCJ9QR2sdX7TKVg#http-01#nginx:/opt/nginx/nginx.conf#https://acme.zerossl.com/v2/DV90/authz/S3hqZW6tGA9uOYSX8tH7LA,'
[Wed Jun 12 20:42:13 CST 2024] start to deactivate authz
[Wed Jun 12 20:42:13 CST 2024] Trigger domain validation.
[Wed Jun 12 20:42:13 CST 2024] _t_url='https://acme.zerossl.com/v2/DV90/chall/GatbM4FRCJ9QR2sdX7TKVg'
[Wed Jun 12 20:42:13 CST 2024] _t_key_authz='xjRDcha5UcNhr8ui-LH1r8pDkDpa5JdqmROrhKxKxBU.5w2k4ULdAUaHaTypKKz_Vfa0MTpSihAMjGkQhyzQznk'
[Wed Jun 12 20:42:13 CST 2024] _t_vtype

this is my nginx.conf
server {
listen 80;
server_name dc.chinarept.com;

	location ~* /.well-known/acme-challenge/(.*) {
		root /path/to/your/challenge/files;
		try_files $1 =404;
	}
}

please help me

2 
server {
	listen 80;
	server_name dc.chinarept.com;

	location ~* /.well-known/acme-challenge/(.*) {
		root /path/to/your/challenge/files;
		try_files $1 =404;
	}
}
3

We don't normally help people who are using ZeroSSL. We might but you should review the below post to make sure that's what you wanted. Many people who want to use Let's Encrypt don't realize the default is ZeroSSL with acme.sh

That said, is that your actual root statement? Because that doesn't look like a valid path on any system :slight_smile:

4 Likes
4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.