Let's Encrypt on password protected domains/subdomains

klausveliu · January 14, 2018, 9:23am

Hello,

I have installed Let’s Encrypt in my WHM panel and it is doing its job.
My issue comes with some sub domains that I restrict the access with .htaccess file.
The htaccess does not let any IP outside a specified list to load the sub domain content and I think this is the reason why my SSL certificate is not being renew in this cases.

Can anyone help me how to solve this issue?
In my case I can white list the IP that letsencrypt is trying the test my sub domains, but I don’t know which they are.

Thank you!

_az · January 14, 2018, 9:53am

You should simply exclude .well-known from your access control rules.

klausveliu · January 14, 2018, 9:58am

Hello,

Could you please help me what should I add on this rule, because I don’t have knowledge in htaccess rules?

RewriteEngine On
RewriteBase /

ORDER DENY,ALLOW
DENY FROM ALL

ALLOW from xx.xx.xx.xx

_az · January 14, 2018, 10:25am

Based on that, you could use:

RewriteEngine On
RewriteBase /

SetEnvIf Request_URI "^/\.well-known/"  acme

ORDER DENY,ALLOW
DENY FROM ALL

ALLOW from xx.xx.xx.xx
Allow from env=acme

klausveliu · January 14, 2018, 1:29pm

Thank you, I would try this code and see if it works.

system · February 13, 2018, 1:29pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
"deny from all" and validation Issuance Tech	2	1036	December 16, 2017
Limit certbot to subdomain Help	3	45	March 13, 2025
Possible IP blocklist? Help	54	2119	September 4, 2022
Need help changing previous letsencrypt-auto domains Issuance Tech	8	4038	March 14, 2016
Authentication server IP list Help	3	957	September 15, 2023

Let's Encrypt on password protected domains/subdomains

Related topics