Issue with Let'sencrypt and digital ocean droplet


#1

I currencly have a digitalcocean droplet running a Ubuntu 14.04x64 droplet I’m to encrypt my site and i’ve followed theses instructions: “How To Secure Apache with Let’s Encrypt on Ubuntu 14.04 Digital Ocean”

IMPORTANT NOTES:

  • The following ‘urn:acme:error:connection’ errors were reported by
    the server:

    Domains: www.stanleybonhomme.com
    Error: The server could not connect to the client to verify the
    domain

  • The following ‘urn:acme:error:unauthorized’ errors were reported by
    the server:

    Domains: stanleybonhomme.com
    Error: The client lacks sufficient authorization
    root@162:/opt/letsencrypt#

I’m just a beginners when it comes to running a server and this kind of stuff can anyone help please?


#2

It looks to me as if www.stanleybonhomme.com isn’t correctly going to your server whereas stanleybonhomme.com is.

You need to correct the DNS and hosting of www.stanleybonhomme.com before you can get a certificate for it.


#3

Ok i will try that and see what happens. I will let you know the result


#4

I can’t figure out how to add the www to my domain so i just did it for ‘stanleybonhomme.com’ and here is the error i got below:

  • The following ‘urn:acme:error:unauthorized’ errors were reported by
    the server:

    Domains: stanleybonhomme.com
    Error: The client lacks sufficient authorization


#5

Does the path .well-known/acme-challenge exist within your main stanleybonhomme.com web directory ?

if not, can you create it, and add a file into it ( say called “test” with contents “result” in it)

Can you then in your browser go to stanleybonhomme.com/.well-known/acme-challenge/test and see “result” ?

This is essentially what the LE script is trying to do - so it’s worth just testing manually first to see why it’s giving an error.


#6

Are you using Digital Ocean DNS or your own?
I have setup using Digital Ocean and it was very easy to setup.
If you are using Digital Ocean Nameservers, you can go to Networking tab, selecting your domain and editing the A record. If both www and non www pages are the same, it is recommended to use CNAME


#7

If you have not worked with this, you can simply point the nameservers of you domain from the Domain control panel to
ns1.digitalocean.com
ns2.digitalocean.com
ns3.digitalocean.com

It is very easy to edit the networking from there, and you can directly issue domain name to the ip of your droplet.
It seems you are pointing only stanleybonhomme.com to your droplets ip