Invalid response from server (type = unauthorized)

Hello Community,

after I got a great and helpful answer I have another little problem while generating an new certificate on my server.

Server: Debian, Virtualmin, Apache2

The following command…
cd /root/letsencrypt/ && ./letsencrypt-auto certonly --email postmaster@bonebase.eu --agree-tos --webroot --renew-by-default -w /home/bonebase/public_html/ -d www.bonebase.eu -d bonebase.eu -d mail.bonebase.eu --authenticator webroot && cp /etc/letsencrypt/live/www.bonebase.eu/cert.pem /home/bonebase/ssl_certificates/cert.pem && cp -f /etc/letsencrypt/live/www.bonebase.eu/chain.pem /home/bonebase/ssl_certificates/chain.pem && cp -f /etc/letsencrypt/live/www.bonebase.eu/fullchain.pem /home/bonebase/ssl_certificates/fullchain.pem && cp -f /etc/letsencrypt/live/www.bonebase.eu/privkey.pem /home/bonebase/ssl_certificates/privkey.pem

…throws the following output…
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for www.bonebase.eu
http-01 challenge for bonebase.eu
http-01 challenge for mail.bonebase.eu
Using the webroot path /home/bonebase/public_html for all unmatched domains.
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. mail.bonebase.eu (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://mail.bonebase.eu/.well-known/acme-challenge/Xe_nMMfSEuw9VY9JN74UxLJerUXqoxvCJvhuKzaOKdY: "

<meta name="viewport" content="width=device-width, initia", bonebase.eu (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://bonebase.eu/.well-known/acme-challenge/ZRymT80gapy9UtVtXPMxQ2qzyst75JTZkvqElT_nzmw: " <meta name="viewport" content="width=device-width, initia", www.bonebase.eu (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.bonebase.eu/.well-known/acme-challenge/xREMoqY-iEwmJYRC1y2yNHJ2wFbVSQJwc0d8LXdz7V4: " <meta name="viewport" content="width=device-width, initia"

IMPORTANT NOTES:

Can you create files in /home/bonebase/public_html that are then visible under http://mail.bonebase.eu/? It looks like you have a blanket redirect from anything under http://mail.bonebase.eu/ to the HTTPS version of the site (not preserving the directory path!) which is interfering with the challenge here.

It looks like this was already discussed at

A version of the redirect that was the problem there is also apparently the problem here.

Hi there,
it’s possible to create files.
https://mail.bonebase.eu/test.txt

Actually if ceated manually the directory “acme-challenge” produced the following output from virtualmin:
Requesting a certificate for bonebase.eu, www.bonebase.eu from Let’s Encrypt …
… request failed : Web-based validation failed : The native Let’s Encrypt client was used previously on this system, and must be used for all future certificate requests DNS-based validation failed : The native Let’s Encrypt client was used previously on this system, and must be used for all future certificate requests

Hi, no. That is another (solved) Problem…

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.