Incomplete authorizations


#1

Hi all, having a bit of an issue here!

My domain is:

lolsided.com

I ran this command:

sudo certbot certonly --standalone --preferred-challenges http --http-01-port 80 -d lolsided.com -d www.lolsided.com --debug

It produced this output:

Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for lolsided.com
http-01 challenge for www.lolsided.com
Waiting for verification…
Cleaning up challenges
Exiting abnormally:
Traceback (most recent call last):
File “/usr/bin/certbot”, line 11, in
load_entry_point(‘certbot==0.22.2’, ‘console_scripts’, ‘certbot’)()
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1266, in main
return config.func(config, plugins)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 1157, in certonly
lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 118, in _get_and_save_cert
lineage = le_client.obtain_and_enroll_certificate(domains, certname)
File “/usr/lib/python3/dist-packages/certbot/client.py”, line 350, in obtain_and_enroll_certificate
cert, chain, key, _ = self.obtain_certificate(domains)
File “/usr/lib/python3/dist-packages/certbot/client.py”, line 294, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File “/usr/lib/python3/dist-packages/certbot/client.py”, line 330, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
File “/usr/lib/python3/dist-packages/certbot/auth_handler.py”, line 82, in handle_authorizations
self.verify_authzr_complete(aauthzrs)
File “/usr/lib/python3/dist-packages/certbot/auth_handler.py”, line 325, in verify_authzr_complete
raise errors.AuthorizationError(“Incomplete authorizations”)
certbot.errors.AuthorizationError: Incomplete authorizations
Please see the logfiles in /var/log/letsencrypt for more details.

My web server is (include version):

HA-Proxy version 1.6.3

The operating system my web server runs on is (include version):

Ubuntu 16.04.4 LTS

I can login to a root shell on my machine (yes or no, or I don’t know): yes.

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no


#2

Note that I was able to solve the issue by following this guide: https://serversforhackers.com/c/letsencrypt-with-haproxy


#3

Interesting solution.

But: Normally, you don’t need different setups first-certificate versus renew certificate.

So you can always use the http-solution.


#4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.