Error when trying to activate domain

Help
1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: withermc.store

I ran this command: sudo certbot --nginx -d withermc.store

It produced this output: Error
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Requesting a certificate for withermc.store

Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: withermc.store
Type: unauthorized
Detail: 13.248.243.5: Invalid response from https://withermc.store/.well-known/acme-challenge/dFm5m3sk20XTjTE9uJkNF8LUUiGX0V7hp82eFhY7I0g: 404

Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.

Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
root@B3778E91:/var/www/pterodactyl#

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is: None, dedicated machine

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): Pterodactyl

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): not sure

2

Hi @Dragon1032, and welcome to the LE community forum :slight_smile:

Is your site available via two IPs?:

Name:      withermc.store
Addresses: 76.223.105.230
           13.248.243.5
3 Likes
3

Im not completely sure. Im following a guide from ctrlpanel.gg and got stumpt when running that command I mentioned. I own the domain of withermc.store. Not sure what the other two ips are. I run pterodactyl panel on a computer IP but neither IP is the one linked to that panel.

4

Both those IP look to point at a load balancer. Can you explain about that?

That load balancer works for HTTPS and is using a GoDaddy certificate.

curl -I https://withermc.store
HTTP/2 200
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
server: DPS/2.0.0+sha-1bd97ab
x-version: 1bd97ab
x-siteid: us-east-1
set-cookie: dps_site_id=us-east-1; path=/; secure


Certificate info:
subject=CN = withermc.store
issuer=C = US, ST = Arizona, L = Scottsdale, O = "GoDaddy.com, Inc.", OU = http://certs.godaddy.com/repository/, CN = Go Daddy Secure Certificate Authority - G2
notBefore=Jan 22 02:56:16 2024 GMT
notAfter=Jan 22 02:56:16 2025 GMT
2 Likes
5

Not 100% sure what those ips are or what exactly I’m needing to explain. Is there something with the domain or is it with the panel? What exactly is a load balancer

6

Your first post requested a cert for use by an nginx server.

But, that domain name already has an active website for it. The IP addresses for that website point to a load balancer. You, or someone on your behalf, set that up. That website already works with HTTPS and uses a GoDaddy cert obtained yesterday.

For your Certbot --nginx command to work an nginx server must respond to HTTP requests to that domain name. That isn't what is happening right now.

Maybe just explain in your own words why you are trying to get a Let's Encrypt cert.

3 Likes
7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.