Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
A lots domains with same issue behind Cloudflare
I ran this command:
certbot 0.31.0
It produced this output:
My web server is (include version):
nginx/1.14.0
The operating system my web server runs on is (include version):
Ubuntu 18.04.5 LTS
My hosting provider, if applicable, is:
NA
I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
certbot 0.31.0
Hi,
I know they have other msj about this but they are old and I don't understand reason.
I have WEB server with a lot different domains, but I have few they are behind Cloudflare and I can't renew them. I try follow this How to get a Let’s Encrypt certificate while using CloudFlare ( 2015) but I don't work, and the error it show in certbot is:
Invalid response from /.well-known/acme-challenge/KiLitU7rygw62szA9zkpIJeQc2xMXCf9C94gLU92DS8 [2606:4700::6812:7a1]: "\n\n<!--[if IE 7]> <html class="no-js "
certbot.errors.FailedChallenges: Failed authorization procedure. (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from
And I have the other cert working fine with same config. in Cloudflare , we have disable "always HTTPS" and "SSL mode" Full. So I can see .well-known/acme-challenge/testfile by HTTP and HTTPS in all domains but error said it
My question
Why it give error "Failed authorization" when is behind Cloudflare?
** If you can see the .well-known / acme-challenge / testfile file, what other Let's Encrypt authentication executes to validate and which Cloudflare does not allow? *
saludos