Let’s Encypt error on Univention UCS Server

Bongiovanni · October 15, 2019, 10:23am

Hi,
I’ve tried using the Let’s Encrypt app on my Univention Server (Apache).
When I have Added the domain of our Univention this error occurs:

ValueError: Challenge did not pass for cloud.amut.it: {u’status’: u’invalid’, u’challenges’: [{u’status’: u’invalid’, u’validationRecord’: [{u’url’: u’http://cloud.amut.it/.well-known/acme-challenge/v5HhuzN5a3w3hQAsiVCW_BfcP8PzO-xbuEJ7E8HEIqA’, u’hostname’: u’cloud.amut.it’, u’addressUsed’: u’95.142.187.173’, u’port’: u’80’, u’addressesResolved’: [u’95.142.187.173’]}, {u’url’: u’https://cloud.amut.it/[https:/cloud.amut.it/.well-known/acme-challenge/v5HhuzN5a3w3hQAsiVCW_BfcP8PzO-xbuEJ7E8HEIqA’, u’hostname’: u’cloud.amut.it’, u’addressUsed’: u’95.142.187.173’, u’port’: u’443’, u’addressesResolved’: [u’95.142.187.173’]}], u’url’: u’https://acme-v02.api.letsencrypt.org/acme/chall-v3/788083832/OwZIhg’, u’token’: u’v5HhuzN5a3w3hQAsiVCW_BfcP8PzO-xbuEJ7E8HEIqA’, u’error’: {u’status’: 403, u’type’: u’urn:ietf:params:acme:error:unauthorized’, u’detail’: u’Invalid response from https://cloud.amut.it/%!b(MISSING)https:/cloud.amut.it/.well-known/acme-challenge/v5HhuzN5a3w3hQAsiVCW_BfcP8PzO-xbuEJ7E8HEIqA [95.142.187.173]: "\n\n\n\n

The domain is reachable, http redirection on https is active.
Do you have any suggestions to make it work?
Thanks in advance.

JuergenAuer · October 15, 2019, 10:39am

Hi @Bongiovanni

see your output. Checking your domain via https://check-your-website.server-daten.de/?q=cloud.amut.it there is a wrong redirect.

http://cloud.amut.it/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

is redirected to

https://cloud.amut.it/%5bhttps:/cloud.amut.it/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

not to

https://cloud.amut.it/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

Looks like a duplicated redirect rule.

Bongiovanni · October 15, 2019, 11:10am

Hi, thank you for the prompt reply.
Do you know what can I check on UCS/Apache to fix the wrong/duplicated redirect rule?

To redirect http to https on my UCS/Apache webserver I’ve just typed:
ucr set apache2/force_https=yes
Then created a ‘/var/www/.htaccess’ with those entries:
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.) [https://%{HTTP_HOST}%{REQUEST_URI}*

JuergenAuer · October 15, 2019, 1:36pm

There is a wrong open bracket [.

system · November 14, 2019, 1:51pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Let's Encypt on Univention Server Server	2	1284	October 7, 2018
Challenge did not pass (status 400) UCS 5 Univention Help	17	1153	March 11, 2023
Pritunl : Error getting LetsEncrypt certificate Help	20	6508	April 5, 2021
Invalid response from acme-challenge Help	12	627	July 13, 2023
Letsencrypt failing on _acme_challenge error Help	8	543	July 23, 2024

Let’s Encypt error on Univention UCS Server

Related topics