Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
I ran this command: wacs,exe (from elevated command prompt.
It produced this output: [EROR] Authorization timed out
[EROR] Renewal for aleagis.usgovvirginia.cloudapp.usgovcloudapi.net failed, will retry on next run
My web server is (include version): IIS 10.0.14393.0
The operating system my web server runs on is (include version): Windows Server 2016 V 1607
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don’t know): yes.
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): using win-acme.v184.108.40.206
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you’re using Certbot): v220.127.116.11
When I try to run the renewal or auto-renewal I get a timeout. In the NSG of Azure for the VM that hosts the website I created a rule with the following entries:
Source: IP Addresses
Source IP addresses/CIDR ranges: 18.104.22.168,22.214.171.124,126.96.36.199,188.8.131.52 (found by pinging, nslookup, etc.)
Source port ranges: *
Destination: IP Addresses
Destination IP Addresses/CIDR ranges: 10.10.10.0/24 (not real, but the server is in the range that is real.)
Destination port ranges: 80,443
With this rule in place the cert will not renew. I’ve tried different things to get it to renew. There are three higher priority rules, but none that should impact the renewal, one is allowing http/80, one is https/443, one is RDP/3389.
If I create a higher priority rule, in the 100s, and have it completely wide open, blocking nothing, then the cert will renew. Of course I don’t want to do that for long. I need to find settings for the rule so that it auto-renew.
Can someone assist me?