Http-01 challenge for my site

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: cosmos.metglobal.tech

I ran this command: sudo certbot certonly --webroot -w /etc/nginx/sites-enabled -d cosmos.metglobal.tech

It produced this output: ERROR: ld.so: object '/lib/snoopy.so' from /etc/ld.so.preload cannot be preloaded (cannot open shared object file): ignored.
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Requesting a certificate for cosmos.metglobal.tech
Performing the following challenges:
http-01 challenge for cosmos.metglobal.tech
Using the webroot path /etc/nginx/sites-enabled for all unmatched domains.
Waiting for verification...
Challenge failed for domain cosmos.metglobal.tech
http-01 challenge for cosmos.metglobal.tech
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: cosmos.metglobal.tech
    Type: unauthorized
    Detail: Invalid response from
    Cosmos
    [35.186.219.188]: "\n\n\n\n<html
    lang="en">\n\n\n\n <meta charset="utf-8">\n <meta
    http-equiv="X-UA-Compatible" content="IE=edge""

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A/AAAA record(s) for that domain
    contain(s) the right IP address.

My web server is (include version): Nginx

The operating system my web server runs on is (include version): NAME="Ubuntu"

VERSION="16.04.1 LTS (Xenial Xerus)

My hosting provider, if applicable, is: -

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): -

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 1.14.0

1 Like

Hi @Emre2

is this

really your webroot? That's a folder with your config files, but normally not your webroot.

Check your config file of that domain to find your webroot.

2 Likes

sorry my webroot is different but still ;

Input the webroot for cosmos.metglobal.tech: (Enter 'c' to cancel): /var/www/production/cosmos/httpdocs/cosmos
Waiting for verification...
Challenge failed for domain cosmos.metglobal.tech
http-01 challenge for cosmos.metglobal.tech
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: cosmos.metglobal.tech
    Type: unauthorized
    Detail: During secondary validation: Invalid response from
    Cosmos
    [35.186.219.188]: "\n\n\n\n<html
    lang="en">\n\n\n\n <meta charset="utf-8">\n <meta
    http-equiv="X-UA-Compatible" content="IE=edge""

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A/AAAA record(s) for that domain
    contain(s) the right IP address.

1 Like

Looks like you have something like a regional firewall.

The main servers from Letsencrypt are able to check your domain.

The secondary can't.

Why?

2 Likes