Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
portal.ihr-potential.de
portal.viaem.de
I ran this command:
sudo docker-compose run --rm certbot certonly --standalone --cert-name portal.ihr-potential.de -d portal.ihr-potential.de --preferred-challenges http -m xxxxxx@ihr-potential.de --agree-tos
It produced this output:
Failed authorization procedure. portal.ihr-potential.de (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://portal.ihr-potential.de/.well-known/acme-challenge/H43LBo_wKbxiCTrwIoxY3owzazLVIQVTUrpxFkvdwfs: Connection refused
My web server is (include version):
usually: docker nginx:latest; But for the command I stopped the nginx container and only started certbot
The operating system my web server runs on is (include version):
usually debian
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don’t know):
yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
no
If I add a --dry-run to the command above, it runs without any problem.
The output of certbot certificates is:
Found the following certs:
Certificate Name: portal.ihr-potential.de
Domains: portal.ihr-potential.de portal.viaem.de
Expiry Date: 2018-03-19 20:40:36+00:00 (VALID: 24 days)
Certificate Path: /etc/letsencrypt/live/portal.ihr-potential.de/fullchain.pem
Private Key Path: /etc/letsencrypt/live/portal.ihr-potential.de/privkey.pem
Certificate Name: portal.viaem.de
Domains: portal.viaem.de
Expiry Date: 2018-03-18 21:59:14+00:00 (VALID: 23 days)
Certificate Path: /etc/letsencrypt/live/portal.viaem.de/fullchain.pem
Private Key Path: /etc/letsencrypt/live/portal.viaem.de/privkey.pem
It was not my intention to have two domains in the first certificate. I’m afraid I messed up something. Does anyone have an idea?