I can't get the certificate for my website via IIS
I get the error

PS C:\Users\Administrator> certbot certainly --webroot
Saving debug log to C:\Certbot\log\letsencrypt.log
Please enter the domain name(s) you would like on your certificate (comma and/or
space separated) (Enter 'c' to cancel): ssdobrasil.online
Requesting a certificate for ssdobrasil.online
Input the webroot for ssdobrasil.online: (Enter 'c' to cancel): D:\Site\wordpress

Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
Domain: ssdobrasil.online
Type: connection
Detail: 2804:d55:47f2:2f00:9696:eb6b:eebe:b267: Fetching http://ssdobrasil.online/.well-known/acme-challenge/az_us9Um6BPX3C7ZcnfVHSIrtglcPfK8sR2-dBbw1nA: Timeout during connect (likely firewall problem)

Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet.

Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile C:\Certbot\log\letsencrypt.log or re-run Certbot with -v for more details.

I tried several times and now it's giving me the error

PS C:\Users\Administrator> certbot certainly --webroot
Saving debug log to C:\Certbot\log\letsencrypt.log
Please enter the domain name(s) you would like on your certificate (comma and/or
space separated) (Enter 'c' to cancel): ssdobrasil.online
Requesting a certificate for ssdobrasil.online
An unexpected error occurred:
Error creating new order :: too many failed authorizations recently: see Failed Validation Limit - Let's Encrypt
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile C:\Certbot\log\letsencrypt.log or re-run Certbot with -v for more details.
PS C:\Users\Administrator>

Does anyone know how to solve it?

Hi @MikeLan, and welcome to the LE community forum

Certbot for Windows is no longer being supported.

As such, you should switch to another ACME client.

certainly is not a known action:

certbot: error: unrecognized arguments: certainly

Is your site accessible via IPv6?

Repeating a failing action won't make it work.

The most common reason with a failed IPv6 connection is that your site has a AAAA record in DNS that points to some other server:

If you are intentionally using IPv6, make sure TCP port 80 is open all the way to your server (windows firewall and any cloud vm networking etc). It's required for HTTP domain validation to work.

If you are using IIS, I would suggest using https://certifytheweb.com (which I develop), or win-acme or posh-acme, as these all know how to store certificates in the windows certificate store and update IIS bindings. You should set your site http bindings to include the hostname first, that makes automatically matching the certificate to your site easier later.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.