Problem with getting a certificate

HELP
Certbot failed to authenticate some domains (authenticator: manual). The Certificate Authority reported these problems:
Domain: www.rsoluciones.nat.cu
Type: unauthorized
Detail: 190.92.127.206: Invalid response from http://www.rsoluciones.nat.cu/.well-known/acme-challenge/8CQwgLfjEJPtBUVgDx6zQokMeD14LCzaXh-s1ZsidVo : "function G(str){return document.getElementById(str);}function C(){P.value='';P.name=P.name.substr(0,17)+"CG""

Hint: The Certificate Authority failed to verify the manually created challenge files. Ensure that you created these in the correct location.

@rodascu I've moved your post in the other thread to its own thread in the #help section. Please don't "hijack" other threads for an issue you're having which is not related.

In the #help section you would have been shown a questionnaire which is mandatory to fill out. I'll post it below. Please answer all the questions to the best of your knowledge:


Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

5 Likes

Certbot failed to authenticate some domains (authenticator: manual). The Certificate Authority reported these problems:
Domain: www.rsoluciones.nat.cu
Type: unauthorized
Detail: 190.92.127.206: Invalid response from http://www.rsoluciones.nat.cu/.well-known/acme-challenge/EVMF7_OX92au83kVoJUngfijzkvIQREZfqBZEgOCrYc: "function G(str){return document.getElementById(str);}function C(){P.value='';P.name=P.name.substr(0,17)+"CG""

Hint: The Certificate Authority failed to verify the manually created challenge files. Ensure that you created these in the correct location.

Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile C:\Certbot\log\letsencrypt.log or re-run Certbot with -v for more details.

www.rsoluciones.nat.cu

certbot 1.30.0

@rodascu Please see the responses at the new thread Osiris created.

https://community.letsencrypt.org/t/dommain-nat-cu-no-cert-file-generate/185491/2
Please post any replies to that new thread - and not in this one

1 Like

Welcome to the community @rodascu

Your system is rejecting the Let's Encrypt HTTP challenge with an error that says:

Comportamiento sospechoso detectado

(google translator says: Suspicious behavior detected)

This was the challenge sent by LE to your server:

http://www.rsoluciones.nat.cu/.well-known/acme-challenge/EVMF7_OX92au83kVoJUngfijzkvIQREZfqBZEgOCrYc

You should check your security settings so that you allow these.

3 Likes

Let's keep everything clean and simple in this thread where I originally moved the posts into in the first place :slight_smile:

@rodascu Please post the answers to the questionnaire in this thread publicly instead of in a direct message to me :slight_smile: That way everyone can help in solving your issue.

4 Likes

@Osiris, what about the other (overlapping) open topic?

2 Likes

Which one?

2 Likes

@rodascu, this looks like you might have an anti-bot tool enabled either on your web server or in a web application firewall (WAF), in order to limit the ability of bots to connect to your site.

Let's Encrypt normally needs to use bots to connect to (part of) your site in order to confirm that you control the domain name for which you're requesting a certificate.

If you use scripts to prevent these bots from connecting, the certificate authority can't complete the validation process.

5 Likes

was my provider ok thanks a lot....

2 Likes