My domain is:
acupuncture-nantes.fr
I ran this command:
certbot --apache
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Which names would you like to activate HTTPS for?
1: acupuncture-ancenis.fr
2: www.acupuncture-ancenis.fr
3: acupuncture-nantes.fr
4: mail.acupuncture-nantes.fr
5: www.acupuncture-nantes.fr
6: calligraphie-chinoise-paris.fr
7: www.calligraphie-chinoise-paris.fr
8: mtc-nantes.fr
9: admin.mtc-nantes.fr
10: consult.mtc-nantes.fr
11: poterie-aisne.fr
12: www.poterie-aisne.fr
13: r0dy.net
14: a.r0dy.net
15: admin.r0dy.net
16: mtc.r0dy.net
17: tlvtle.r0dy.net
18: www.r0dy.net
19: terre-encre.net
20: www.terre-encre.net
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel): 4
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for mail.acupuncture-nantes.fr
Waiting for verification...
Challenge failed for domain mail.acupuncture-nantes.fr
http-01 challenge for mail.acupuncture-nantes.fr
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: mail.acupuncture-nantes.fr
Type: unauthorized
Detail: Invalid response from
http://mail.acupuncture-nantes.fr/.well-known/acme-challenge/2_fn7kL-L1pbZJ3k56QiGzzSd87AsjfPbpEg6AHiUjs
[193.70.86.96]: "\n\n404 Not
Found\n\nNot Found
\n<p"To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
My web server is (include version):
Apache/2.4.41
The operating system my web server runs on is (include version):
Ubuntu 20.04
My hosting provider, if applicable, is:
OVH
I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
certbot 0.40.0
all other domains and subdomains listed above, i didnt get any problem to create/add certificates.
Here is /etc/apache2/sites-enabled/acupuncture-nantes.fr.conf :
<VirtualHost *:80>
ServerAdmin thomas@acupuncture-nantes.fr
ServerName acupuncture-nantes.fr
ServerAlias www.acupuncture-nantes.fr mtc-nantes.fr mail.acupuncture-nantes.fr
DocumentRoot /var/www/acupuncture-nantes.fr
<Directory /var/www/acupuncture-nantes.fr/>
AllowOverride All
</Directory>
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
RewriteEngine on
RewriteCond %{HTTP_HOST} =acupuncture-nantes.fr [OR]
RewriteCond %{HTTP_HOST} =www.acupuncture-nantes.fr [OR]
RewriteCond %{HTTP_HOST} =mail.acupuncture-nantes.fr [OR]
RewriteCond %{HTTP_HOST} =mtc-nantes.fr
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [END,NE,R=permanent]
</VirtualHost>
and here is /etc/apache2/sites-enabled/acupuncture-nantes.fr-le-ssl.conf :
<IfModule mod_ssl.c>
<VirtualHost *:443>
ServerAdmin thomas@acupuncture-nantes.fr
ServerName acupuncture-nantes.fr
Alias /mail /usr/share/roundcube
ServerAlias www.acupuncture-nantes.fr mtc-nantes.fr mail.acupuncture-nantes.fr
DocumentRoot /var/www/acupuncture-nantes.fr
<Directory /var/www/acupuncture-nantes.fr/>
AllowOverride All
</Directory>
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateFile /etc/letsencrypt/live/acupuncture-nantes.fr/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/acupuncture-nantes.fr/privkey.pem
</VirtualHost>
</IfModule>
and here is my dns zone :
@ 10800 IN A 193.70.86.96
admin 10800 IN CNAME @
consult 10800 IN CNAME @
mail 10800 IN CNAME @
www 10800 IN CNAME @
@ 10800 IN MX 10 mail.acupuncture-nantes.fr.
My goal here is to enable ssl for mail transfers (dovecot installed and running), i just added mail.acupuncture-nantes.fr in the web server aliases because i thought it would solve the problem, at first, and allow me to add the certificate.
Any help would be very welcome