Hello,
I try to get certificate for domain “ing.by” and some subdomains (klintsou.ing.by, laser.ing.by, etc…), but receive error “Policy forbids issuing for name”.
My domain is:
ing.by
I ran this command:
dehydrated -c
It produced this output:
Processing ing.by
- Signing domains…
- Creating new directory /etc/dehydrated/certs/ing.by …
- Generating private key…
- Generating signing request…
- Requesting challenge for ing.by…
- ERROR: An error occurred while sending post-request to https://acme-v01.api.letsencrypt.org/acme/new-authz (Status 400)
Details:
{
“type”: “urn:acme:error:rejectedIdentifier”,
“detail”: “Error creating new authz :: Policy forbids issuing for name”,
“status”: 400
}
My web server is (include version):
openresty/1.13.6.1
The operating system my web server runs on is (include version):
CentOS release 6.9
My hosting provider, if applicable, is:
AWS
I can login to a root shell on my machine (yes or no, or I don’t know):
yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
dehydrated