Expired certificate

dgtal · April 15, 2020, 3:58am

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:quicklogbook.com

I ran this command:R: Cancel scheduled, Create new certificate (M)

It produced this output: [INFO] Authorize identifier: quicklogbook.com
[INFO] Authorizing quicklogbook.com using http-01 validation (SelfHosting)
[EROR] Authorization result: pending
[EROR] Create certificate failed: Authorization failed

My web server is (include version):IIS Server 10

The operating system my web server runs on is (include version):Windows Server 10

My hosting provider, if applicable, is: www.dynu.com

I can login to a root shell on my machine (yes or no, or I don’t know):yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):IIs

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):letsencrypt.\wacs.exe

JuergenAuer · April 15, 2020, 8:05am

Hi @dgtal

there is a check of your domain, ~~3 hours old - https://check-your-website.server-daten.de/?q=quicklogbook.com#url-checks

Some things are ok.

To test: Create the two required subdirectories /.well-known/acme-challenge, there a test file (file name 1234), then try to load that file via

http://quicklogbook.com/.well-known/acme-challenge/1234

That must work.

Perhaps use the online tool to check that url directly.

dgtal · April 15, 2020, 1:32pm

I guess this is going to be a long day.
I created the 2 virtual subdirectories and a “fake” 1234 file: http://quicklogbook.com/.well-known/acme-challenge/1234
I don’t know where to go from here. What do you mean with “there a test file”? there is a test file? attach a test file? Im lost
Itsn’t better to delete the whole letsencrypt and start it again from zero?
Thank you for your help

mnordhoff · April 15, 2020, 11:01pm

A post was split to a new topic: Renewing certificates on Bluehost

dgtal · April 16, 2020, 12:20am

I m in quarantine. I have enough time to figure this mess out. Otherwise Im gonna have to throw my website to the garbage

dgtal · April 17, 2020, 2:35am

Nice way to punish users who forget to RENEW their SSL certificate.
Is there a special protocol or type of communication channel to beg the ACME server to RELEASE a web site and remove the ban?

9peppe · April 17, 2020, 8:32am

what the hell are you talking about?

you are not currently ratelimited: https://tools.letsdebug.net/cert-search?m=domain&q=quicklogbook.com&d=168

your main problem as I see it is that you use a windows server and most people here are not experienced with it and can’t help much (myself included)

dgtal · April 17, 2020, 9:14pm

Ok Thank you. Not matter what I do. I always get this messages:
[INFO] Authorizing quicklogbook.com using http-01 validation (SelfHosting)
[EROR] Authorization result: pending
[EROR] Create certificate failed: Authorization failed

mnordhoff · April 17, 2020, 9:38pm

That is very little information to go on.

Does your ACME client have a way to enable detailed logs?

dgtal · April 17, 2020, 9:40pm

Im not sure. I will let let you know

dgtal · April 17, 2020, 10:12pm

I just installed the letsencrypt SSL in my second website (quicklogbooks.com) hosted in the same IIs with no problems at all. I’m playing with redirection/forwarding at Dynu hosting but I guess I need a certificate in each site for the forwarding to work. Still unable to certify quicklogbook.com

system · May 17, 2020, 10:12pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.