Error on setup with new site (worked on other sites before)

tsedgman · October 26, 2018, 10:58am

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: whiteroseholidaypark.co.uk

I ran this command: October 26th, 11:50:13 AM

It produced this output: ```
–2018-10-26 10:49:51-- https://forge-certificates.laravel.com/le/432358/641039?env=production
Resolving forge-certificates.laravel.com (forge-certificates.laravel.com)… 104.25.9.32, 104.25.8.32, 2606:4700:20::6819:820, …
Connecting to forge-certificates.laravel.com (forge-certificates.laravel.com)|104.25.9.32|:443… connected.
HTTP request sent, awaiting response… 200 OK
Length: unspecified [text/html]
Saving to: ‘letsencrypt_script1540550991’

 0K ..                                                     26.6M=0s

2018-10-26 10:49:51 (26.6 MB/s) - ‘letsencrypt_script1540550991’ saved [2317]

Cloning into ‘letsencrypt1540550991’…
ERROR: Challenge is invalid! (returned: invalid) (result: {
“type”: “http-01”,
“status”: “invalid”,
“error”: {
“type”: “urn:ietf:params:acme:error:unauthorized”,
“detail”: “Invalid response from http://whiteroseholidaypark.co.uk/.well-known/acme-challenge/WqaJWnaLodTwRpPx2oPIJ-ZsBFYGeaRetgeo52hkQrY: “\u003chtml\u003e\r\n\u003chead\u003e\u003ctitle\u003e403 Forbidden\u003c/title\u003e\u003c/head\u003e\r\n\u003cbody bgcolor=\“white\”\u003e\r\n\u003ccenter\u003e\u003ch1\u003e403 Forbidden\u003c/h1\u003e\u003c/center\u003e\r\n\u003chr\u003e\u003ccenter\u003e””,
“status”: 403
},
“url”: “https://acme-v02.api.letsencrypt.org/acme/challenge/1Kd6BL55-8J-iJQeokMMplK3JqvsG-bVSScumZK_G8k/8651893767”,
“token”: “WqaJWnaLodTwRpPx2oPIJ-ZsBFYGeaRetgeo52hkQrY”,
“validationRecord”: [
{
“url”: “http://whiteroseholidaypark.co.uk/.well-known/acme-challenge/WqaJWnaLodTwRpPx2oPIJ-ZsBFYGeaRetgeo52hkQrY”,
“hostname”: “whiteroseholidaypark.co.uk”,
“port”: “80”,
“addressesResolved”: [
“159.65.213.163”
],
“addressUsed”: “159.65.213.163”
}
]
})


My web server is (include version): forge

The operating system my web server runs on is (include version): linux

My hosting provider, if applicable, is: 123reg

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): forge

JuergenAuer · October 26, 2018, 11:06am

Hi @tsedgman

your challenge url says, that your server sends a http status 403: Forbidden.

"Invalid response from http://whiteroseholidaypark.co.uk/.well-known/acme-challenge/WqaJWnaLodTwRpPx2oPIJ-ZsBFYGeaRetgeo52hkQrY: \"<html>\\r\\n<head><title>403 Forbidden</title>

So check your directory permissions of /.well-known/acme-challenge/. Create there a file and check, if you can load this file via your browser.

tsedgman · October 26, 2018, 11:10am

there is no file with that name, i assumed that it was created by letsencrypt

tsedgman · October 26, 2018, 11:12am

ok, found the problem. it was the NGINX security settings that were preventing it from running

system · November 25, 2018, 11:12am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.