AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1. Set the 'ServerName' directive globally to suppress this message
VirtualHost configuration:
*:80 ibfinance.sas.pro.dns-orange.fr (/etc/apache2/sites-enabled/ibfinance.conf:1)
ServerRoot: "/etc/apache2"
Main DocumentRoot: "/var/www/html"
Main ErrorLog: "/var/log/apache2/error.log"
Mutex ssl-stapling: using_defaults
Mutex ssl-cache: using_defaults
Mutex default: dir="/var/run/apache2/" mechanism=default
Mutex mpm-accept: using_defaults
Mutex watchdog-callback: using_defaults
Mutex rewrite-map: using_defaults
Mutex ssl-stapling-refresh: using_defaults
PidFile: "/var/run/apache2/apache2.pid"
Define: DUMP_VHOSTS
Define: DUMP_RUN_CFG
User: name="www-data" id=33
Group: name="www-data" id=33
Excellent! That's what I hoped to see.
Let me check something...
I know this might sound silly, but you are actually running certbot on the server for ibfinance.sas.pro.dns-orange.fr
, correct?
would you say if Im connected throught ibfinance.sas.pro.dns-orange.fr or if, after executed the command "sudo certbot --apache" I selected "ibfinance.sas.pro.dns-orange.fr". For the first case: no and the second case: yes
Let's try something:
sudo certbot certonly --webroot -w /home/minecraft_serveur_owner/Sites_Internet/www -d "ibfinance.sas.pro.dns-orange.fr" --dry-run
It returned it:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Account registered.
Simulating a certificate request for ibfinance.sas.pro.dns-orange.fr
Performing the following challenges:
http-01 challenge for ibfinance.sas.pro.dns-orange.fr
Using the webroot path /home/minecraft_serveur_owner/Sites_Internet/www for all unmatched domains.
Waiting for verification...
Cleaning up challenges
IMPORTANT NOTES:
- The dry run was successful.
That's what I thought.
Let's try this then:
sudo certbot certonly --apache -d "ibfinance.sas.pro.dns-orange.fr" --dry-run
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Simulating a certificate request for ibfinance.sas.pro.dns-orange.fr
Performing the following challenges:
http-01 challenge for ibfinance.sas.pro.dns-orange.fr
Waiting for verification...
Challenge failed for domain ibfinance.sas.pro.dns-orange.fr
http-01 challenge for ibfinance.sas.pro.dns-orange.fr
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: ibfinance.sas.pro.dns-orange.fr
Type: unauthorized
Detail: Invalid response from
http://ibfinance.sas.pro.dns-orange.fr/.well-known/acme-challenge/IZcs-_CbGzUUik_m2Bzupz345sEx8_AsaieuM0H_47c
[90.76.236.125]: "<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML
2.0//EN\">\n<html><head>\n<title>403
Forbidden</title>\n</head><body>\n<h1>Forbidden</h1>\n<p"
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
Yep. It's the non-standard webroot.
Alrighty then...
sudo certbot -a webroot -w /home/minecraft_serveur_owner/Sites_Internet/www -d "ibfinance.sas.pro.dns-orange.fr" -i apache
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer apache
Requesting a certificate for ibfinance.sas.pro.dns-orange.fr
Performing the following challenges:
http-01 challenge for ibfinance.sas.pro.dns-orange.fr
Using the webroot path /home/minecraft_serveur_owner/Sites_Internet/www for all unmatched domains.
Waiting for verification...
Cleaning up challenges
Created an SSL vhost at /etc/apache2/sites-available/ibfinance-le-ssl.conf
Deploying Certificate to VirtualHost /etc/apache2/sites-available/ibfinance-le-ssl.conf
Enabling available site: /etc/apache2/sites-available/ibfinance-le-ssl.conf
Redirecting vhost in /etc/apache2/sites-enabled/ibfinance.conf to ssl vhost in /etc/apache2/sites-available/ibfinance-le-ssl.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Congratulations! You have successfully enabled
https://ibfinance.sas.pro.dns-orange.fr
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
IMPORTANT NOTES:
- Congratulations! Your certificate and chain have been saved at:
/etc/letsencrypt/live/ibfinance.sas.pro.dns-orange.fr/fullchain.pem
Your key file has been saved at:
/etc/letsencrypt/live/ibfinance.sas.pro.dns-orange.fr/privkey.pem
Your certificate will expire on 2021-04-27. To obtain a new or
tweaked version of this certificate in the future, simply run
certbot again with the "certonly" option. To non-interactively
renew *all* of your certificates, run "certbot renew"
- If you like Certbot, please consider supporting our work by:
Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate
Donating to EFF: https://eff.org/donate-le
Thank you very much for have take the time to help me!
You're quite welcome!
You can test your renewals with this:
sudo certbot renew --dry-run
ok I will remember for it
You can do it now if you wish. It's just a test. Won't actually change anything. If it succeeds, you should be worry free when it autorenews in 60 days.
Yes, I tested it and it working great!