Failed authorization procedure

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:mytvcloud.hopto.org

I ran this command:sudo certbot --apache

It produced this output:Failed authorization procedure

My web server is (include version):apache Server version: Apache/2.4.29 (Ubuntu)
Server built: 2019-04-03T13:22:37

The operating system my web server runs on is (include version):ubuntu 18.04 in Windows 10 linux subsystem

My hosting provider, if applicable, is:no-ip

I can login to a root shell on my machine (yes or no, or I don’t know):yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):certbot 0.31.0

What is the full output?

Hi @tweetybird

if you want to use certbot --apache, you need a running webserver, port 80.

But your website is invisible ( https://check-your-website.server-daten.de/?q=mytvcloud.hopto.org ):

Domainname Http-Status redirect Sec. G
http://mytvcloud.hopto.org/
71.204.89.93 -14 10.026 T
Timeout - The operation has timed out
https://mytvcloud.hopto.org/
71.204.89.93 -14 10.023 T
Timeout - The operation has timed out
http://mytvcloud.hopto.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
71.204.89.93 -14 10.030 T
Timeout - The operation has timed out

Only timeouts.

So check your router and your firewall if Letsencrypt is able to connect your server.

That

Host T IP-Address is auth. ∑ Queries ∑ Timeout
mytvcloud.hopto.org A 71.204.89.93 Roswell/Georgia/United States (US) - Comcast Cable Communications, LLC Hostname: c-71-204-89-93.hsd1.ga.comcast.net yes 1 0
AAAA yes

looks like a home server.

Some ISP blocks port 80. There is no older certificate, so it’s your first certificate.

If your ISP blocks port 80, you have to use dns-01 validation.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.