[Let’s Encrypt SSL] FAILURE of renewal

Help
1

Automatic Let's Encrypt renewal for octoply.co.uk was attempted and failed.
This certificate expires on 2020-11-23 00:20:04 +0000 GMT.

Unable to renew certificate: Updating challenge for www.octoply.co.uk: acme: error code 403 "urn:ietf:params:acme:error:unauthorized": Invalid response from https://www.octoply.com/.well-known/acme-challenge/AyplK5JxJalS-ybsl6fOuN4S24jHI7rRzBFdxHcsVqc [18.214.94.135]: "\n<html lang="en">\n \n <meta charset="utf-8">\n <meta name="viewport" content="width=device-w" (order URL: https://acme-v02.api.letsencrypt.org/acme/order/3097104/5851742158)

You can configure/re-install/remove this certificate by logging into cPanel, and visiting the Lets Encrypt SSL page.

My domain is: octoply.co.uk
My hosting provider: Krystal
I’m using a control panel to manage my site: Cpanel

2

Hi @octo

you see: You have a redirect from your domain to www.octoply.com. Checking your domain Letsencrypt follows such redirects.

But the ip of your co.uk domain is 94.136.40.82 - looks like the wrong server is checked.

Remove that redirect.

3

Hi @JuergenAuer,

Thanks for your quick reply. I need this redirect to www.octoply.com and I've read that despite the redirect I still need renew the SSL certificate for octoply.co.uk domain in my case. Can you please advise how to do that?

4

You may need to speak with your HSP; as, it seems, they are the ones doing the redirection:

Name:    redirects.123-reg.co.uk
Address:  94.136.40.82

[I'm actually surprised they didn't use an HTML page to do the redirection]

Nonetheless, if you are going to redirect https://[www.]octoply.co.uk/ to https://www.octoply.com/, the server at octoply.co.uk (IP 94.136.40.82) will have to use a cert that covers that name.
If you have no control of that system, then you will need to speak with those that do about having that done for you.
If they can't, then you could always just change the DNS record for the co.uk zone to CNAME the .com zone and then handle the redirection yourself (at the .com server).

READERS: Get involved. Be heard. Do your part with: If you read something you like, then like it :heart:

1 Like
5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.