Hi,
Please can anyone point out what is going wrong with my new Pritunl setup as i am unable to obtain a LetsEncrypt cert. (I am completely new to setting up a VPN server so bare with me.)
im running Ubuntu Server 20.04 and I'm on my 4th / 5th attempt on getting it to work and trying fix'x i have see on forums and normal google search's.
The error i am getting on Pritunl page is : Error getting LetsEncrypt certificate check the logs for more information.
I can see theese entry's in the log file (/var/log/pritunl.log)
[autumn-skies-5353][2021-01-08 12:42:01,349][ERROR] Failed to get LetsEncrypt cert
Traceback (most recent call last):
File "/usr/lib/pritunl/lib/python2.7/site-packages/pritunl/handlers/settings.py", line 938, in settings_put
acme.update_acme_cert()
File "/usr/lib/pritunl/lib/python2.7/site-packages/pritunl/acme.py", line 68, in update_acme_cert
cert = get_acme_cert(settings.app.acme_key, csr)
File "/usr/lib/pritunl/lib/python2.7/site-packages/pritunl/acme.py", line 43, in get_acme_cert
set_acme,
File "/usr/lib/pritunl/lib/python2.7/site-packages/pritunl/acme_tiny.py", line 138, in get_crt
raise ValueError("Challenge did not pass for {0}: {1}".format(domain, authorization))
ValueError: Challenge did not pass for itsmrbstech.com: {u'status': u'invalid', u'challenges': [{u'status': u'invalid', u'validationRecord': [{u'url': u'http://itsmrbstech.com/.well-known/acme-challenge/JK9iZYDPCgAPaBK3dRQ8O0rXC3B86kQQdrNb5DAHiT0', u'hostname': u'itsmrbstech.com', u'addressUsed': u'x.x.x.x.', u'port': u'80', u'addressesResolved': [u'x.x.x.x.']}, {u'url': u'http://www.itsmrbstech.com/.well-known/acme-challenge/JK9iZYDPCgAPaBK3dRQ8O0rXC3B86kQQdrNb5DAHiT0', u'hostname': u'www.itsmrbstech.com', u'addressUsed': u'x.x.x.x.', u'port': u'80', u'addressesResolved': [u'x.x.x.x.']}, {u'url': u'https://www.itsmrbstech.com/.well-known/acme-challenge/JK9iZYDPCgAPaBK3dRQ8O0rXC3B86kQQdrNb5DAHiT0', u'hostname': u'www.itsmrbstech.com', u'addressUsed': u'x.x.x.x.', u'port': u'443', u'addressesResolved': [u'x.x.x.x.']}], u'url': u'https://acme-v02.api.letsencrypt.org/acme/chall-v3/9917120903/YwGHAA', u'token': u'JK9iZYDPCgAPaBK3dRQ8O0rXC3B86kQQdrNb5DAHiT0', u'error': {u'status': 403, u'type': u'urn:ietf:params:acme:error:unauthorized', u'detail': u'Invalid response from https://www.itsmrbstech.com/.well-known/acme-challenge/JK9iZYDPCgAPaBK3dRQ8O0rXC3B86kQQdrNb5DAHiT0 [x.x.x.x.]: "<!DOCTYPE HTML PUBLIC \\"-//IETF//DTD HTML 2.0//EN\\">\\n<html><head>\\n<title>404 Not Found</title>\\n</head><body>\\n<h1>Not Found</h1>\\n<p"'}, u'type': u'http-01'}], u'identifier': {u'type': u'dns', u'value': u'itsmrbstech.com'}, u'expires': u'2021-01-15T12:41:56Z'}
acme_domain = "itsmrbstech.com"
I have reviewed the firewall and port 80 and 443 is open so it can download a certificate as expected.
Has anyone got any idea on how to get around this?