LE and Certbot on standalone OSX - troubleshooting guide


#1

Please fill out the fields below so we can help you better.

My domain is: iwp.ethnos.ca; pr.ethnos.ca; (future members.ethnos.ca) - these domains are hosted at webfaction.com
I ran this command: sudo certbot certonly --standalone -d pr.ethnos.ca -d iwp.ethnos.ca

It produced this output:
Cleaning up challenges
Failed authorization procedure. pr.ethnos.ca (tls-sni-01):
urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect
validation certificate for tls-sni-01 challenge. Requested
f592f276a2f82670282fb09313b58292.4a90531be75a205093663e56deba6d58.a
cme.invalid from 207.38.86.235P443. Received 3 certificate(s), first certificate had
names ".webfaction.com, webfaction.com", iwp.ethnos.ca (tls-sni-01):
urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect
validation certificate for tls-sni-01 challenge. Requested
fec3eda850cd27e892c7c22a8f4e3519.0987d2e00cc0631372057d8be2d7c8d5.a
cme.invalid from 207.38.86.235P443. Received 3 certificate(s), first certificate had
names "
.webfaction.com, webfaction.com"
IMPORTANT NOTES:

  • The following errors were reported by the server:
    Domain: pr.ethnos.ca
    Type: unauthorized
    Detail: Incorrect validation certificate for tls-sni-01 challenge.
    Requested
    f592f276a2f82670282fb09313b58292.4a90531be75a205093663e56deba6d58.a
    cme.invalid
    from 207.38.86.235P443. Received 3 certificate(s), first
    certificate had names ".webfaction.com, webfaction.com"
    Domain: iwp.ethnos.ca
    Type: unauthorized
    Detail: Incorrect validation certificate for tls-sni-01 challenge.
    Requested
    fec3eda850cd27e892c7c22a8f4e3519.0987d2e00cc0631372057d8be2d7c8d5.a
    cme.invalid
    from 207.38.86.235P443. Received 3 certificate(s), first
    certificate had names "
    .webfaction.com, webfaction.com"
    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A record(s) for that domain
    contain(s) the right IP address.

My operating system is (include version): OSX Sierra

My web server is (include version): not certain what the hosting site is providing

My hosting provider, if applicable, is: webfaction.com

I can login to a root shell on my machine (yes or no, or I don’t know): I don’t know if that is available

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): webfaction provided interface, don’t think it’s “control panel”


#2

Hi @rshaferjr,

Are you running Certbot on your web server, or on your own laptop? In almost all cases it is supposed to be run on the web server (over ssh), not on your own computer.


#3

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.