Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: pesosanjuan.online
I ran this command: sudo certbot --apache
It produced this output:Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Detail: 2a02:4780:1d:7a31:945c:f224:5995:b01e: Invalid response from http://pesosanjuan.online/.well-known/acme-challenge/zr28QpxahJMxs4PUto90yEEzJr_kaJ45k9ztuqUe6uY: 404
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you're using Certbot): certbot 1.21.0
Hi @KuyaGit, and welcome to the LE community forum
AWS EC2, but I only see
Hostinger IP addresses:
ARIN Whois/RDAP - 2a02:4780:1d:ad20:c53a:46df:1142:bd91
ARIN Whois/RDAP - 126.96.36.199
Thank you for welcoming me. What will I do
Check that you have entered the correct Internet IP for your system.
From your server, what do these show?:
curl -4 ifconfig.io
curl -6 ifconfig.io
I already get the certificates but can you send me a link or blog how i will setup that on xampp server ubuntu. Thank you very much
This is not a place to find such a link/blog.
Apache and enabling a secure site on that is straight forward.
What do these show?:
sudo apachectl -t -D DUMP_VHOSTS
The site is already secured.
What are you missing?
Maybe the "
www" is missing from the secured vhost...
What names are on the cert?:
OK , the "
www" name is NOT in the certificate.
If you intend on using that name, you will have to replace that cert with a cert that has both names on it:
That error is unexpected.
Is there any NAT / port mapping in place?
netstat -pant | grep -i listen | grep :443
The port 443 virtual host looks incomplete. SSL is not enabled
The server is using both names, but the cert does not have both names on it.
See the "subject alternative name" section:
crt.sh | 11065837845
Good catch @MikeMcQ!
@KuyaGit, how was that secure vhost created?
what other things that i need to set?
Everything related to TLS is missing from that vhost.
Is this the first site you secure?
Here is a very rough example found on the Internet:
See the three lines that start with "SSL"?
Yes I'm currently college. I appreciate you and Mike