Hi,
I moved a webapp to another server and I now cannot pass the acme-challenge.
It says “unauthorised” but if I click the Link I see the token!
Could the use of 127.0.0.1 be the cuase and how do I change that?
It is on Ubuntu 14.04 / Apache FPM / Plesk Onyx / LE Pluggin
nslookup domain.tld
Server: 127.0.0.1
Address: 127.0.0.1#53
Non-authoritative answer:
Name: domain.tld
Address: 123.123.123.123
(PS Domain and IP are changed - )
Regards,
Jan
Without the details of your real domain etc it’s very difficult to help.
I’d first check that you can access the token from outside ( i.e it’s not because you have whitelisted your IP or anything) and that it is returning the correct token, in plain text
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
It produced this output:
My web server is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don’t know):
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
My domain is:
rechnung.pw
I ran this command:
Used the Plesk Onyx LE Pluggin
It produced this output:
Fehler: Could not issue a Let’s Encrypt SSL/TLS certificate for rechnung.pw.
The authorization token is not available at http://rechnung.pw/.well-known/acme-challenge/bCl2JSDN_-6uil_Ma_G0r9oOhcVQCKiwwoHwazqttqg.
To resolve the issue, make it is possible to download the token file via the above URL.
See the related Knowledge Base article for details.
Details
Invalid response from https://acme-v01.api.letsencrypt.org/acme/authz/FqlkLHxC52OI2pwyFubDsuyaql-77eTMQ1_yEgEQNG0.
Details:
Type: urn:acme:error:unauthorized
Status: 403
Detail: Invalid response from http://rechnung.pw/.well-known/acme-challenge/bCl2JSDN_-6uil_Ma_G0r9oOhcVQCKiwwoHwazqttqg: “
(!DOCTYPE html)
(html lang=“en”)
(head)
(meta charset=“utf-8”)
(meta http-equiv=“x-ua-compatible” content=“ie=edge”)
(meta”…")
klicking the first link in the browser gives the required output
bCl2JSDN_-6uil_Ma_G0r9oOhcVQCKiwwoHwazqttqg.U2IyseIdNTTO07Z8x8VGWndQLnlpGSWWoEjkR90EgFc
My web server is (include version):
Plesk Onyx v17.5.3_build1705170317.16 os_Ubuntu 14.04
OS Ubuntu 14.04.5 LTS
With https://kindergarten-rainbach.info/ on the same server all is working.
My hosting provider, if applicable, is:
Rootserver rented with Hosteurope
I can login to a root shell on my machine (yes or no, or I don’t know):
Yes.
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
Plesk Onyx Version 17.5.3 Update #35
IPv4 and IPv6 are aktivated.
Hope this gives enough details.
Regards,
Jan
It returns the challenge over IPv4. Over IPv6, it returns the 404 Not Found HTML page in the Let’s Encrypt error.
Are you sure the DNS records are correct?
rechnung.pw. (unsigned) 160 A 37.61.205.149
rechnung.pw. (unsigned) 160 AAAA 2a01:488:66:1000:53a9:2580:0:1
Are you sure the web server configuration is correct? I probably can’t help fix a Plesk issue, though. 
Thank you,
the IPv6 Address has not been changed yet, I just changed the IP-Address for less then 2 hours so the DNS has not changed there seems to be a difference in time with 4 and 6.
I guess I have to be patient.
Regards,
Jan
Namecheap had a problem, that was the cause:
However, it seems that the changes in the host records were not saved on our servers due to a glitch in our system
i ran letsencrypt again, all is OK.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.