Getting Some challenges have failed while running init-letsencrypt.sh

Help
1

I am trying to setup scalelite server and running init-letsencrypt.sh but it's throwing error. I tried to install certificate using apt install nginx certbot python3-certbot-nginx and it worked which means my ports are open but it's not woeking with init-letsencrypt.sh.

My domain is: amanbishnoi.online

I ran this command: ./init-letsencrypt.sh

It produced this output:

### Creating dummy certificate for  ...
Generating a RSA private key
.............................+++++
.................................................................+++++
writing new private key to '/etc/letsencrypt/live//privkey.pem'
-----

### Starting scalelite-proxy ...
Recreating redis    ... done
Recreating certbot  ... done
Recreating postgres ... done
Recreating scalelite-api ... done
Recreating scalelite-recordings ... done
Recreating scalelite-proxy      ... done

### Deleting dummy certificate for  ...

### Requesting Let's Encrypt certificate for  ...
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Please enter the domain name(s) you would like on your certificate (comma and/or
space separated) (Enter 'c' to cancel): amanbishnoi.online
Requesting a certificate for amanbishnoi.online

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Challenges loaded. Press continue to submit to CA.
Pass "-v" for more info about challenges.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Press Enter to Continue-v

Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
  Domain: amanbishnoi.online
  Type:   connection
  Detail: 4.210.250.220: Fetching http://amanbishnoi.online/.well-known/acme-challenge/hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0: Connection refused

Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet.

Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.

My web server is (include version): Azure VM

The operating system my web server runs on is (include version): Linux (ubuntu 22.04)

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
I am trying to setup scalelite application. below is my docker compose-

certbot:
    image: ${CERTBOT_DOCKER_IMAGE:-certbot/certbot}
    container_name: certbot
    volumes:
      - ./log/certbot/:/var/log/letsencrypt
      - ./data/certbot/conf/:/etc/letsencrypt
      - ./data/certbot/www/:/var/www/certbot
    entrypoint: "/bin/sh -c 'trap exit TERM; while :; do certbot renew; sleep 12h & wait $${!}; done;'"

  scalelite-proxy:
    image: ${NGINX_DOCKER_IMAGE:-nginx:1.24}
    container_name: scalelite-proxy
    restart: unless-stopped
    ports:
      - "80:80"
      - "443:443"
    environment:
      - NGINX_HOSTNAME=${URL_HOST:-sl.xlab.blindside-ps.dev}
    volumes:
      - ./log/proxy-nginx/:/var/log/nginx
      - ./data/proxy/nginx/sites.template.${DOCKER_PROXY_NGINX_TEMPLATE:-scalelite-proxy}:/etc/nginx/sites.template
      - ./data/proxy/nginx/sites-common:/etc/nginx/sites-common
      - ./data/certbot/conf/:/etc/letsencrypt
      - ./data/certbot/www/:/var/www/certbot
    depends_on:
      - certbot
      - scalelite-api
      - scalelite-recordings
    command: /bin/bash -c "envsubst '$$NGINX_HOSTNAME' < /etc/nginx/sites.template > /etc/nginx/conf.d/default.conf && while :; do sleep 6h & wait $${!}; nginx -s reload; done & nginx -g 'daemon off;'"
2

here is the cerbot log-

2023-10-06 14:22:46,498:DEBUG:certbot._internal.main:certbot version: 2.7.0
2023-10-06 14:22:46,499:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/local/bin/certbot
2023-10-06 14:22:46,499:DEBUG:certbot._internal.main:Arguments: ['--webroot', '-w', '/var/www/certbot', '--staging', '--email', 'somegmail@gmail.com', '--rsa-key-size', '4096', '--agree-tos', '--debug-challenge>
2023-10-06 14:22:46,499:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2023-10-06 14:22:46,507:DEBUG:certbot._internal.log:Root logging level set at 30
2023-10-06 14:22:46,508:DEBUG:certbot._internal.plugins.selection:Requested authenticator webroot and installer None
2023-10-06 14:22:46,508:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * webroot
Description: Saves the necessary validation files to a .well-known/acme-challenge/ directory within the nominated webroot path. A seperate HTTP server must be running and serving files from the webroot path. HT>
Interfaces: Authenticator, Plugin
Entry point: EntryPoint(name='webroot', value='certbot._internal.plugins.webroot:Authenticator', group='certbot.plugins')
Initialized: <certbot._internal.plugins.webroot.Authenticator object at 0x7f1d0f1409d0>
Prep: True
2023-10-06 14:22:46,508:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot._internal.plugins.webroot.Authenticator object at 0x7f1d0f1409d0> and installer None
2023-10-06 14:22:46,508:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator webroot, Installer None
2023-10-06 14:22:46,778:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_>
2023-10-06 14:22:46,779:DEBUG:acme.client:Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory.
2023-10-06 14:22:46,781:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443
2023-10-06 14:22:47,218:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 826
2023-10-06 14:22:47,219:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 06 Oct 2023 14:22:47 GMT
Content-Type: application/json
Content-Length: 826
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change",
  "meta": {
    "caaIdentities": [
      "letsencrypt.org"
    ],
    "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.3-September-21-2022.pdf",
    "website": "https://letsencrypt.org/docs/staging-environment/"
  },
  "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct",
  "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce",
  "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order",
  "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/draft-ietf-acme-ari-01/renewalInfo/",
  "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert",
  "zl512EQL7kY": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417"
}
2023-10-06 14:22:47,219:DEBUG:certbot.display.ops:No installer, picking names manually
2023-10-06 14:23:24,464:DEBUG:certbot._internal.display.obj:Notifying user: Requesting a certificate for amanbishnoi.online
2023-10-06 14:23:24,468:DEBUG:acme.client:Requesting fresh nonce
HTTP 200
Server: nginx
Date: Fri, 06 Oct 2023 14:23:24 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: HzmSNKzxuzvfKR0I_oDkQAYDtozw7-QoOsQkFmthR42x1gqgrRs
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800


2023-10-06 14:23:24,614:DEBUG:acme.client:Storing nonce: HzmSNKzxuzvfKR0I_oDkQAYDtozw7-QoOsQkFmthR42x1gqgrRs
2023-10-06 14:23:24,614:DEBUG:acme.client:JWS payload:
b'{\n  "identifiers": [\n    {\n      "type": "dns",\n      "value": "amanbishnoi.online"\n    }\n  ]\n}'
2023-10-06 14:23:24,619:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjA5NzA5MDQiLCAibm9uY2UiOiAiSHptU05Lenh1enZmS1IwSV9vRGtRQVlEdG96dzctUW9Pc1FrRm10aFI0Mn>
  "signature": "TPRc96Yhv0nDXKhsAkAQ9QN_eWWinS6jhHKiPKLg_8QXYtvVyaWPo14gxbnQQ7hjYgU-eG2aDPxahjYpkH0cHxSdc6_x1hI_fvL971ruoVAW41AOg_hlg-EUt6wA5ZBDHiyqiczk9gnDAIaH4jREtvib1aBOxPdlOPy8aJ0TZBbFfts1oRBj1rTW2p3okJavSr>
  "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImFtYW5iaXNobm9pLm9ubGluZSIKICAgIH0KICBdCn0"
}
2023-10-06 14:23:24,794:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 356
2023-10-06 14:23:24,795:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Fri, 06 Oct 2023 14:23:24 GMT
Content-Type: application/json
Content-Length: 356
Connection: keep-alive
Boulder-Requester: 120970904
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/120970904/11409274804
Replay-Nonce: HzmSNKzxhFzZ6WEEHd0vEpoZP73x4132fFUjuHwVaxyF372JfV8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "status": "pending",
  "expires": "2023-10-13T14:23:24Z",
  "identifiers": [
    {
      "type": "dns",
      "value": "amanbishnoi.online"
    }
  ],
  "authorizations": [
    "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/8709839544"
  ],
  "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/120970904/11409274804"
}
2023-10-06 14:23:24,795:DEBUG:acme.client:Storing nonce: HzmSNKzxhFzZ6WEEHd0vEpoZP73x4132fFUjuHwVaxyF372JfV8
2023-10-06 14:23:24,795:DEBUG:acme.client:JWS payload:
b''
2023-10-06 14:23:24,798:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/8709839544:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjA5NzA5MDQiLCAibm9uY2UiOiAiSHptU05LenhoRnpaNldFRUhkMHZFcG9aUDczeDQxMzJmRlVqdUh3VmF4eU>
  "signature": "l3MFI18B3CMLOynX213b8TiLZH5jI0xbgPQDnPbcwfsJiYqsAfuitnbFEfTG4qoJQtVSjlfTsIGyt6E4nrcAg0GEV0PWXXzz76FGp7XF3CatiXh0St85nG6jlnWqJj7UWZjWjvVwoW4J7uu7kURisbv4fd_qO6dh5gQuOCulmQC8F3wY_A_PX927UvfR7ruV7Q>
  "payload": ""
}
2023-10-06 14:23:24,947:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/8709839544 HTTP/1.1" 200 820
2023-10-06 14:23:24,948:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 06 Oct 2023 14:23:24 GMT
Content-Type: application/json
Content-Length: 820
Connection: keep-alive
Boulder-Requester: 120970904
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: HzmSNKzxp8nq6tes9ghTkCTtAKsCyy-LYjVm-4lu1BjHjjpg1Ts
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "amanbishnoi.online"
  },
  "status": "pending",
  "expires": "2023-10-13T14:23:24Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "pending",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/8709839544/0NiLZg",
      "token": "hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0"
    },
    {
      "type": "dns-01",
      "status": "pending",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/8709839544/KzRN-A",
      "token": "hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0"
    },
    {
      "type": "tls-alpn-01",
      "status": "pending",
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/8709839544/fZhimg",
      "token": "hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0"
    }
  ]
}
2023-10-06 14:23:24,948:DEBUG:acme.client:Storing nonce: HzmSNKzxp8nq6tes9ghTkCTtAKsCyy-LYjVm-4lu1BjHjjpg1Ts
2023-10-06 14:23:24,949:INFO:certbot._internal.auth_handler:Performing the following challenges:
2023-10-06 14:23:24,949:INFO:certbot._internal.auth_handler:http-01 challenge for amanbishnoi.online
2023-10-06 14:23:24,949:INFO:certbot._internal.plugins.webroot:Using the webroot path /var/www/certbot for all unmatched domains.
2023-10-06 14:23:24,949:DEBUG:certbot._internal.plugins.webroot:Creating root challenges validation dir at /var/www/certbot/.well-known/acme-challenge
2023-10-06 14:23:24,950:DEBUG:certbot._internal.plugins.webroot:Attempting to save validation to /var/www/certbot/.well-known/acme-challenge/hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0
2023-10-06 14:23:24,950:DEBUG:certbot._internal.display.obj:Notifying user: Challenges loaded. Press continue to submit to CA.
Pass "-v" for more info about challenges.
2023-10-06 14:23:29,491:DEBUG:acme.client:JWS payload:
b'{}'
2023-10-06 14:23:29,494:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/8709839544/0NiLZg:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjA5NzA5MDQiLCAibm9uY2UiOiAiSHptU05LenhwOG5xNnRlczlnaFRrQ1R0QUtzQ3l5LUxZalZtLTRsdTFCak>
  "signature": "bnZLXFqxBlPheEomdmMgpeoqpIn6nWnq4kStn_driHW6ExF76B6img8GlThpoLOJMLGraFqFB4zGEapFNKv2GGPz1UflxTh2IW5Z1xTSACDArfDDPrjLqzZMeGvnQB1DJVj9mgDYpqh4ZpDkBTkQfbVLY-Em9u6EKEuh-3gTFNxsS3akaZ4N5ArikqE6_EXhCH>
  "payload": "e30"
}
2023-10-06 14:23:29,648:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/8709839544/0NiLZg HTTP/1.1" 200 193
2023-10-06 14:23:29,649:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 06 Oct 2023 14:23:29 GMT
Content-Type: application/json
Content-Length: 193
Connection: keep-alive
Boulder-Requester: 120970904
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/8709839544>;rel="up"
Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/8709839544/0NiLZg
Replay-Nonce: Oaj3whhZojSBugOqLBve7wwVd4PDa7WcMQB_NGdEsfek7Z0cDeQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "type": "http-01",
  "status": "pending",
  "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/8709839544/0NiLZg",
  "token": "hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0"
}
2023-10-06 14:23:29,649:DEBUG:acme.client:Storing nonce: Oaj3whhZojSBugOqLBve7wwVd4PDa7WcMQB_NGdEsfek7Z0cDeQ
2023-10-06 14:23:29,649:INFO:certbot._internal.auth_handler:Waiting for verification...
2023-10-06 14:23:30,651:DEBUG:acme.client:JWS payload:
b''
2023-10-06 14:23:30,654:DEBUG:acme.client:Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/8709839544:
{
  "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjA5NzA5MDQiLCAibm9uY2UiOiAiT2FqM3doaFpvalNCdWdPcUxCdmU3d3dWZDRQRGE3V2NNUUJfTkdkRXNmZW>
  "signature": "PFHfbGez4ZP_Kakn-4nRM3Eckm-q9yK5KHTn_qq9WJFXm7pI3_nvPuDgf7w07dZ4_Be0z6DLMrrUPBb7DdYnkxk8ImwO5KK1Nyj0P_30UxhhcJUJJNuvatImN5tisglJOulLo7rEEX-X5NdEGyhWdxBDV8Y4tORy7OqrXWG2b4kMw6M0xoNUTTyydicDauoYLE>
  "payload": ""
}
2023-10-06 14:23:30,805:DEBUG:urllib3.connectionpool:https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/8709839544 HTTP/1.1" 200 1046
2023-10-06 14:23:30,806:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Fri, 06 Oct 2023 14:23:30 GMT
Content-Type: application/json
Content-Length: 1046
Connection: keep-alive
Boulder-Requester: 120970904
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: Oaj3whhZRghvpmfPweZUfTW4qbi0PWjTG62-TtafcmSYr1B10Vw
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
  "identifier": {
    "type": "dns",
    "value": "amanbishnoi.online"
  },
  "status": "invalid",
  "expires": "2023-10-13T14:23:24Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "invalid",
      "error": {
        "type": "urn:ietf:params:acme:error:connection",
        "detail": "4.210.250.220: Fetching http://amanbishnoi.online/.well-known/acme-challenge/hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0: Connection refused",
        "status": 400
      },
      "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/8709839544/0NiLZg",
      "token": "hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0",
      "validationRecord": [
        {
          "url": "http://amanbishnoi.online/.well-known/acme-challenge/hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0",
          "hostname": "amanbishnoi.online",
          "port": "80",
          "addressesResolved": [
            "4.210.250.220"
],
          "addressUsed": "4.210.250.220"
        }
      ],
      "validated": "2023-10-06T14:23:29Z"
    }
  ]
}
2023-10-06 14:23:30,806:DEBUG:acme.client:Storing nonce: Oaj3whhZRghvpmfPweZUfTW4qbi0PWjTG62-TtafcmSYr1B10Vw
2023-10-06 14:23:30,806:INFO:certbot._internal.auth_handler:Challenge failed for domain amanbishnoi.online
2023-10-06 14:23:30,806:INFO:certbot._internal.auth_handler:http-01 challenge for amanbishnoi.online
2023-10-06 14:23:30,806:DEBUG:certbot._internal.display.obj:Notifying user:
Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
  Domain: amanbishnoi.online
  Type:   connection
  Detail: 4.210.250.220: Fetching http://amanbishnoi.online/.well-known/acme-challenge/hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0: Connection refused

Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created>

2023-10-06 14:23:30,807:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
  File "/opt/certbot/src/certbot/certbot/_internal/auth_handler.py", line 108, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort)
  File "/opt/certbot/src/certbot/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2023-10-06 14:23:30,807:DEBUG:certbot._internal.error_handler:Calling registered functions
2023-10-06 14:23:30,807:INFO:certbot._internal.auth_handler:Cleaning up challenges
2023-10-06 14:23:30,807:DEBUG:certbot._internal.plugins.webroot:Removing /var/www/certbot/.well-known/acme-challenge/hnlJJW0IgLEWc9uPrup-iMbXHh1_fybrNhdGVrZ2cQ0
2023-10-06 14:23:30,807:DEBUG:certbot._internal.plugins.webroot:All challenges cleaned up
2023-10-06 14:23:30,808:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
  File "/usr/local/bin/certbot", line 33, in <module>
    sys.exit(load_entry_point('certbot', 'console_scripts', 'certbot')())
  File "/opt/certbot/src/certbot/certbot/main.py", line 19, in main
    return internal_main.main(cli_args)
  File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 1873, in main
    return config.func(config, plugins)
  File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 1600, in certonly
    lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
  File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 143, in _get_and_save_cert
    lineage = le_client.obtain_and_enroll_certificate(domains, certname)
  File "/opt/certbot/src/certbot/certbot/_internal/client.py", line 517, in obtain_and_enroll_certificate
    cert, chain, key, _ = self.obtain_certificate(domains)
  File "/opt/certbot/src/certbot/certbot/_internal/client.py", line 428, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  File "/opt/certbot/src/certbot/certbot/_internal/client.py", line 496, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
  File "/opt/certbot/src/certbot/certbot/_internal/auth_handler.py", line 108, in handle_authorizations
    self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort)
  File "/opt/certbot/src/certbot/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations
    raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2023-10-06 14:23:30,808:ERROR:certbot._internal.log:Some challenges have failed.
3

Hi @Amanb1145, and welcome to the LE community forum :slight_smile:

It says "Connection refused", so that means something is stopped that HTTP challenge request.

That just means you installed those things; It doesn't make any assertions about any ports.
You show a Docker container is using the HTTP [and HTTPS] port.
Where did you install nginx ?
Is your site reachable via HTTP from the Internet?

3 Likes
4

Hey @rg305, Thanks for replying.
what I mean is if I run any other project It will work with apt install nginx certbot python3-certbot-nginx
but for this particular repo It's running nginx and certbot as containers which is a problem coz it requires me to run init-letsencrypt.sh. This is a loadbalancer project.

1 Like
5

The client used should not matter.
The Internet must be able to reach the site via HTTP.
I'm not sure that is happening [yet].

3 Likes
6

Issue is with the init-letsencrypt.sh file but managed to install it manually using other method and it's working now.

1 Like
7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.