Installing letsencrypt on Ubuntu Server


#1

My domain is:dzoni.gil.gmbh.

I ran this command: sudo certbot --apache -d dzoni.gil.gmbh.

It produced this output:
Failed authorization procedure. dzoni.gil.gmbh (http-01): urn:ietf:params:acme:e rror:unauthorized :: The client lacks sufficient authorization :: Invalid respon se from http://dzoni.gil.gmbh/.well-known/acme-challenge/X2mBTacV2nYZpa4F_j5-Unl AGLjw1lLHGsR35LUik1U: "

404 Not Found

404 Not Found


"

IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: dzoni.gil.gmbh
    Type: unauthorized
    Detail: Invalid response from
    http://dzoni.gil.gmbh/.well-known/acme-challenge/X2mBTacV2nYZpa4F_j5-UnlAGLjw 1lLHGsR35LUik1U:
    "

    404 Not Found

    404 Not Found


    "

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A/AAAA record(s) for that domain
    contain(s) the right IP address.

My web server is (include version): Apache2

The operating system my web server runs on is (include version):Ubuntu Server 16.04

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):


#2

Hi,

Did you have a existing Apache virtual host config for this site? If so, can you please share it?

Thank you


#3

Thanks to you, here is
<VirtualHost *:80>
ServerAdmin info@dzoni.gil.gmbh
ServerName dzoni.gil.gmbh
ServerAlias www.dzoni.gil.gmbh
DocumentRoot /var/www/dzoni.gil.gmbh/public_html
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined


#4

Hi @Dzoniii

there is a redirect:

download http://dzoni.gil.gmbh/.well-known/acme-challenge/X2mBTacV2nYZpa4F_j5-UnlAGLjw -h
Connection: keep-alive
Content-Length: 326
Content-Type: text/html; charset=iso-8859-1
Date: Thu, 06 Sep 2018 12:58:49 GMT
Location: https://ccp.netcup.net/.well-known/acme-challenge/X2mBTacV2nYZpa4F_j5-UnlAGLjw
Server: nginx
X-Powered-By: PleskLin

Status: 302 Redirect

dzoni.gil.gmbh has 188.68.47.51, ccp.netcup.net has 46.38.224.29, a different ip-address.

Do you use plesk? There should be an integrated ssl-solution, this is the best choice.

Or: Remove the redirect.

Your dzoni.gil.gmbh is redirected complete to https://ccp.netcup.net/ - there is a web interface.


#5

Hello there and thank you so much for your response.I am quite new into this, so you make me more confuse.i cant change my IP on netcup.As far i remember i put diffirent IP on my Linux Apache virtualhost(157.97.106.223),and when i type dzoni.gil.gmbh. works fine(with .) but i cant install letscencrypt.


#6

This ip isn’t available - http://157.97.106.223/ - timeout. So certbot may save there a file, but Letsencrypt isn’t able to load that file.

If you can’t fix it, you have to use dns-01 - validation. So you have to create a dns txt entry

_acme-challenge.dzoni.gil.gmbh

with a special value.


#7

Thank you so much @JuergenAuer


#8

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.