Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
-
My domain is:
www.cloud.kisioanalysis.io -
I ran this command:
/opt/letsencrypt/letsencrypt-auto certonyl --webroot -w /path/to/webroot -d cloud.kisioanalysis.io -d www.kisioanalysis.io -
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Cert is due for renewal, auto-renewing…
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for cloud.kisioanalysis.io
http-01 challenge for www.cloud.kisioanalysis.io
Using the webroot path /path/to/webroot for all unmatched domains.
Waiting for verification…
Challenge failed for domain www.cloud.kisioanalysis.io
Challenge failed for domain cloud.kisioanalysis.io
http-01 challenge for www.cloud.kisioanalysis.io
http-01 challenge for cloud.kisioanalysis.io
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: www.cloud.kisioanalysis.io
Type: unauthorized
Detail: Invalid response from
https://www.cloud.kisioanalysis.io/.well-known/acme-challenge/BaBmPI9ph8P3S8ysjZK9_PyZepBderuOFMEzAuW46xE
[52.47.118.142]: “\r\n403
Forbidden\r\n\r\n403
\r\n
Forbidden
nginx/1.16.1</ce”Domain: cloud.kisioanalysis.io
Type: unauthorized
Detail: Invalid response from
https://cloud.kisioanalysis.io/.well-known/acme-challenge/W7PLdaVD7epiGknmiY-eVb0Uc8LTkPsdPEldG0FK8LE
[52.47.118.142]: “\r\n403
Forbidden\r\n\r\n403
\r\n
Forbidden
nginx/1.16.1</ce”To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. -
My web server is (include version):
nginx version: nginx/1.16.1 -
The operating system my web server runs on is (include version):
NAME=“Amazon Linux AMI”
VERSION=“2018.03” -
My hosting provider, if applicable, is:
amazon web services -
I can login to a root shell on my machine (yes or no, or I don’t know):
yes -
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
no -
The version of my client is (e.g. output of
certbot --versionorcertbot-auto --versionif you’re using Certbot):
certbot 1.2.0
Hello everyone,
I’m pretty new to ssl certificates and overall in web administration, and i was wondering why can not i renew an existing certificate using letsencrypt command. I have multiple domains , where i do not have any issues renewing certificates but this one seems to have some. I tried multiple things such as modifying my nginx conf file, but nothing seems to work.
I’m already sorry if it is such a stupid and simple problem, but as i said i’m really new to all this, and still learning.
I would appreciate some support and feedbacks, and thank you for your time reading this.
Best regards,
