Invalid response from server (type = unauthorized)

Help
1

Hello Community,

after I got a great and helpful answer I have another little problem while generating an new certificate on my server.

Server: Debian, Virtualmin, Apache2

The following command…
cd /root/letsencrypt/ && ./letsencrypt-auto certonly --email postmaster@bonebase.eu --agree-tos --webroot --renew-by-default -w /home/bonebase/public_html/ -d www.bonebase.eu -d bonebase.eu -d mail.bonebase.eu --authenticator webroot && cp /etc/letsencrypt/live/www.bonebase.eu/cert.pem /home/bonebase/ssl_certificates/cert.pem && cp -f /etc/letsencrypt/live/www.bonebase.eu/chain.pem /home/bonebase/ssl_certificates/chain.pem && cp -f /etc/letsencrypt/live/www.bonebase.eu/fullchain.pem /home/bonebase/ssl_certificates/fullchain.pem && cp -f /etc/letsencrypt/live/www.bonebase.eu/privkey.pem /home/bonebase/ssl_certificates/privkey.pem

…throws the following output…
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for www.bonebase.eu
http-01 challenge for bonebase.eu
http-01 challenge for mail.bonebase.eu
Using the webroot path /home/bonebase/public_html for all unmatched domains.
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. mail.bonebase.eu (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://mail.bonebase.eu/.well-known/acme-challenge/Xe_nMMfSEuw9VY9JN74UxLJerUXqoxvCJvhuKzaOKdY: "

<meta name="viewport" content="width=device-width, initia", bonebase.eu (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://bonebase.eu/.well-known/acme-challenge/ZRymT80gapy9UtVtXPMxQ2qzyst75JTZkvqElT_nzmw: " <meta name="viewport" content="width=device-width, initia", www.bonebase.eu (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.bonebase.eu/.well-known/acme-challenge/xREMoqY-iEwmJYRC1y2yNHJ2wFbVSQJwc0d8LXdz7V4: " <meta name="viewport" content="width=device-width, initia"

IMPORTANT NOTES:

2

Can you create files in /home/bonebase/public_html that are then visible under http://mail.bonebase.eu/? It looks like you have a blanket redirect from anything under http://mail.bonebase.eu/ to the HTTPS version of the site (not preserving the directory path!) which is interfering with the challenge here.

3

It looks like this was already discussed at

A version of the redirect that was the problem there is also apparently the problem here.

4

Hi there,
it’s possible to create files.
https://mail.bonebase.eu/test.txt

Actually if ceated manually the directory “acme-challenge” produced the following output from virtualmin:
Requesting a certificate for bonebase.eu, www.bonebase.eu from Let’s Encrypt …
… request failed : Web-based validation failed : The native Let’s Encrypt client was used previously on this system, and must be used for all future certificate requests DNS-based validation failed : The native Let’s Encrypt client was used previously on this system, and must be used for all future certificate requests

5

Hi, no. That is another (solved) Problem…