I would appreciate some assistance in finding why certbot is not able to generate certificates for us on a RedHat 7 server.
certbot certonly --webroot -w /var/www -d epwprs.dpw.gov.za --test-cert
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for epwprs.dpw.gov.za
Using the webroot path /var/www for all unmatched domains.
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. epwprs.dpw.gov.za (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://epwprs.dpw.gov.za/.well-known/acme-challenge/Cb1TTHNV2nYCPSdbtGmY5hmK1ZaUq-cpLKYLLnXP6Y4 [18.104.22.168]: “\r\n404 Not Found\r\n<body bgcolor=“white”>\r\n
404 Not Found\r\n
The following errors were reported by the server:
Detail: Invalid response from
[22.214.171.124]: “\r\n404 Not
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
We have checked, and AAAA DNS record no AAAA record found for that domain.
However, when I tested http://www.webdnstools.com/dnstools/check-domain-results it indicated that it could not find an authoritative name server. Would that cause certbot to fail?
Domain Check Results
Running domain configuration checks for epwprs.dpw.gov.za…
General Name Server Tests
Test Detail Result
Name Servers Exist Received answer from ns2.dpw.gov.za
The name servers for this domain are: Pass
Could not find an authoritative name server.