Help! Failed authorization procedure

Help
1

Hello, friends, I need your help. I’m trying to install from Ubuntu 18.04.1 LTS, but at the time of generating the certificate I have the following error:

instruction:
sudo letsencrypt --apache

Result:

Saving debug log to Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for talleres.honda.com.gt
Enabled Apache rewrite module
Waiting for verification …
Cleaning up challenges
Failed authorization procedure. talleres.honda.com.gt (http-01): urn: ietf: params: acme: error: unauthorized :: The client lacks sufficient authorization :: Invalid response from http://talleres.honda.com.gt/.well -known / acme-challenge / vXXNzsUKYyKWJqLxgxBsUbnmcBtL8Co3Es5JUCzpRt0: "<! DOCTYPE HTML PUBLIC " - // IETF // DTD HTML 2.0 // EN \ "> \ n \ n 404 Not Found </ title> \ n </ head> \ n

Not Found </ h1> \ n <p "

IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: talleres.honda.com.gt
    Type: unauthorized
    Detail: Invalid response from
    http://talleres.honda.com.gt/.well-known/acme-challenge/vXXNzsUKYyKWJqLxgxBsUbnmcBtL8Co3Es5JUCzpRt0:
    "<! DOCTYPE HTML PUBLIC " - // IETF // DTD HTML
    2.0 // EN \ "> \ n \ n 404 Not
    Found </ title> \ n </ head> \ n

    Not Found </ h1> \ n <p "

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A / YYYY record (s) for that domain
    contain (s) the right IP address.

regards

2

Hi,

Could you please try to place a random file (with random name & contents) into the following path and see if the file is viewable to public?

Please place the file to the document root/.well-known/acme-challenge/ and share us the link to the file

Thank you

3

Done!

https://talleres.honda.com.gt/.well-known/acme-challenge/test

4

Hi,

What authenticator are you using? webroot or apache?

Thank you

5

Hi @peterzeta

but checking your http - version:

D:\temp>download http://talleres.honda.com.gt/.well-known/acme-challenge/test -h
SystemDefault
Error (1): Der Remoteserver hat einen Fehler zurückgegeben: (404) Nicht gefunden.
ProtocolError
Connection: close
Content-Length: 312
Content-Type: text/html; charset=iso-8859-1
Date: Wed, 17 Oct 2018 17:45:48 GMT
Server: Apache/2.2.22 (EL)

Status: 404 NotFound
404

That doesn't work. Letsencrypt checks port 80.

So your http may have another configuration.

6

PS: There are two different Apache - server:

Testing the https - version:

D:\temp>download https://talleres.honda.com.gt/.well-known/acme-challenge/test -h
SSL error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Accept-Ranges: bytes
Content-Length: 30
Date: Wed, 17 Oct 2018 17:22:11 GMT
ETag: "1e-5786ed4d73dee"
Last-Modified: Wed, 17 Oct 2018 16:04:56 GMT
Server: Apache/2.4.29 (Ubuntu)

Status: 200 OK

813,01 milliseconds
0,81 seconds

http has an Apache/2.2.22, https a 2.4.29.

7

Tanks a lot! the http port (80) was being used by a different server. It was a configuration in the firewall that manages the network.

My certificate works great! Saved my day

1 Like
8

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.