Invalid response using Certbot

Raymond973 · August 12, 2023, 9:19pm

Bonjour, j'ai eu message d'erreur en voulant une certificat SSL à l'aide de Cerbot. Voici le message;
"Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
Domain: raymondcoffre.fr
Type: unauthorized
Detail: 213.186.33.5: Invalid response from http://www.raymondcoffre.fr: "<html xml:lang="fr-FR" lang="fr-FR">\n\n<title qtlid="28806">Félicitations ! Votre domaine a bien été créé chez OVHclou"

Domain: www.raymondcoffre.fr
Type: unauthorized
Detail: 213.186.33.5: Invalid response from http://www.raymondcoffre.fr: "<html xml:lang="fr-FR" lang="fr-FR">\n\n<title qtlid="28806">Félicitations ! Votre domaine a bien été créé chez OVHclou"

Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet."

J'ai exécuté la commande suivante: "sudo certbot certonly --webroot -w /Users/raymondcoffre/Sites/raymondcoffre.fr/ -d raymondcoffre.fr -d www.raymondcoffre.fr"
Mon serveur Web : Mamp Pro version 6.8.1
J'utilise un iMac avec une version IOS Ventura 13.5
Mon nom de domaine a été créé sur OVh
J'utilise l'application Terminal de mon iMac;
Pouvez-vous m'aider à résoudre les erreurs signalées par Cerbot afin de créer mes certificats SSL pour mon de domaine (raymondcoffre.fr) et sous-domaine (www.raymondcoffre.fr).
Merci d'avance
Raymond COFFRE

rg305 · August 12, 2023, 11:06pm

Is your domain active OR is it parked?

Name:    redirect.ovh.net
Address: 213.186.33.5

9peppe · August 12, 2023, 11:09pm

It looks like the DNS records for raymondcoffre.fr are there, but those for www.raymondcoffre.fr are missing/bolierplate.

Or maybe both are missing, and non-www is a redirect

MikeMcQ · August 13, 2023, 1:10am

I think it is parked.

@Raymond973 Let's Encrypt HTTP Challenge requests to your domain are redirected to the "home" page. These requests should instead return the challenge token

Make sure your DNS is pointing directly to your web server public IP

curl -IL www.raymondcoffre.fr/.well-known/acme-challenge/Test123

HTTP/1.1 302 Moved Temporarily
server: nginx
location: http://www.raymondcoffre.fr
x-iplb-request-id: 12CE7CC7:D44A_D5BA2105:0050_64D82C69_3261796F:6A88
x-iplb-instance: 16978
set-cookie: SERVERID77446=200179|ZNgsb|ZNgsb; path=/; HttpOnly

Also, the "x-iplb" response headers indicate some management system. That is, I doubt this is your "Mamp pro" web server and instead an nginx server run by OVH

system · September 12, 2023, 1:10am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.