Nginx Proxy Manager Internal Error while generate Certificate

Hi I need help:
I installed a new Nginx Proxy Manager and while generating a new Certificate I had an internal Error.
The Output of the log is:
[10/4/2022] [6:25:14 AM] [Nginx ] › :information_source: info Reloading Nginx

[10/4/2022] [6:25:20 AM] [SSL ] › :information_source: info Requesting Let'sEncrypt certificates for Cert #20:

[10/4/2022] [6:25:20 AM] [SSL ] › :information_source: info Command: certbot certonly --config "/etc/letsencrypt.ini" --cert-name "npm-20" --agree-tos --authenticator webroot --email "" --preferred-challenges "dns,http" --domains ""

[10/4/2022] [6:25:22 AM] [Nginx ] › :information_source: info Reloading Nginx

[10/4/2022] [6:25:22 AM] [Express ] › :warning: warning Command failed: certbot certonly --config "/etc/letsencrypt.ini" --cert-name "npm-20" --agree-tos --authenticator webroot --email "" --preferred-challenges "dns,http" --domains ""

Saving debug log to /var/log/letsencrypt/letsencrypt.log

Certificate did not match expected hostname: Certificate: {'subject': ((('commonName', ''),),), 'issuer': ((('countryName', 'US'),), (('organizationName', "Let's Encrypt"),), (('commonName', 'R3'),)), 'version': 3, 'serialNumber': '03ED0FDF7B872CCE146FF12DEC0355B11233', 'notBefore': 'Aug 15 02:34:00 2022 GMT', 'notAfter': 'Nov 13 02:33:59 2022 GMT', 'subjectAltName': (('DNS', ''), ('DNS', '')), 'OCSP': ('',), 'caIssuers': ('',)}

An unexpected error occurred:

requests.exceptions.SSLError: HTTPSConnectionPool(host='', port=443): Max retries exceeded with url: /directory (Caused by SSLError(CertificateError("hostname '' doesn't match either of '', ''")))

Ask for help or search for solutions at See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.

[10/4/2022] [6:38:56 AM] [Nginx ] › :information_source: info Reloading Nginx

[10/4/2022] [6:41:18 AM] [Nginx ] › :information_source: info Reloading Nginx

Can anyone help me?

1 Like

Hi @mikadoman, and welcome to the LE community forum :slight_smile:

That looks like the outbound HTTPS requests to "" are being proxied by a system that has a cert for "".


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.