Error 500 on a specific domain

DanielvdWal · August 14, 2018, 1:03pm

Hello,

I’m running several domains on a CentOS 7 installation with DirectAdmin.

When i request a certificate for a domain (goldseeds.nl), i get a Internal Server Error.

I changed the account within DirectAdmin, but the problem still exists.

This is the response from the request:

{
“type”: “urn:ietf:params:acme:error:serverInternal”,
“detail”: “Error finalizing order”,
“status”: 500
}

Can somebody tell me what to do?

Thanks in advance!

Daniel van der Wal

stevenzhu · August 14, 2018, 2:10pm

Hi,

That error seems to be an internal error from let’s encrypt validation server…

Can you try to run the process again by now?

Thank you

DanielvdWal · August 14, 2018, 2:30pm

Thank you for your reply.

I just tried it a couple a minutes ago.. but still the same results

Maybe this is somewhat helpfull if a Boulder developer sees it:

Boulder-Requester: 37449428

stevenzhu · August 14, 2018, 3:26pm

True...

@lestaff

Thank you

tdelmas · August 15, 2018, 9:57pm

Let’s ping a Boulder engineer… @cpu : does @DanielvdWal needs to open an issue on https://github.com/letsencrypt/boulder/issues ?

DanielvdWal · August 16, 2018, 10:46am

Thank you @tdelmas! The problem doesn’t “fix” on his own…

The error is still there

_az · August 16, 2018, 11:03am

Did you generate your own CSR? Could you share it? (it is not sensitive material)

DanielvdWal · August 16, 2018, 1:11pm

I use the letsencrypt.sh script provided bij DirectAdmin. I use this script for almost 2000 domains and never had a problem with it…

I didn’t generate a CSR seperate. So I think that provided DirectAdmin script will do it for me? Sorry for the ignorance…

But the error mentioned before will only show on that domain only…

schoen · August 16, 2018, 10:16pm

@lestaff, is there any known reason for this 500 error?

jsha · August 16, 2018, 10:35pm

I’m taking a look, thanks.

jsha · August 16, 2018, 11:43pm

I’m afraid there’s a race condition here that has made your authorization for this domain (https://acme-v01.api.letsencrypt.org/acme/authz/7LHBMcrS0xz6stgh9RM4FPu6M9LvH78FlXvA2QsiuJ0) error out when used for issuance. We’ll work on a fix. Your best option for now is to deactivate that authz, if your client supports it, then attempt issuance again.

You could also wait for that authorization to expire on August 26th, but that only gives you one day before the certificate expired (August 27th), so that’s riskier.

DanielvdWal · September 3, 2018, 9:48am

@jsha I was able to request a new certificate today!

Sorry for the late response, i was on a holiday for the last 2 weeks.

system · October 3, 2018, 9:49am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Error finalizing order (500 Internal Server Error) Help	6	3118	August 5, 2018
Internal Server Error (500) when creating certificates Help	4	2240	April 6, 2017
Getting 500 error: Help	3	785	May 5, 2021
Consistent serverInternal errors on new-cert on my account Help	5	1163	July 13, 2017
Acme: error 500 serverInternal :: Error creating new order Help	7	3496	December 26, 2019

Error 500 on a specific domain

Related topics