[Solved] Urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http

SDKiller · August 10, 2017, 3:50pm

I recently tried to obtain certificates and to renew certificated for 2 domains hosted on 2 different servers and receive the same error

FailedChallenges: Failed authorization procedure… (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http…

But on both servers files exist in .well-known/acme-challenge

If I try to access them in browser, I succeed.
DNS records for domains are quite old, dig resolves them.

What is more - there is nothing in nginx access and error logs except my own IP, seems that letsencrypt did not queried my domains at all.

3 months ago everything was fine with these servers and domains.

SDKiller · August 10, 2017, 5:08pm

After digging into logs and reading some forum topics - it seems the problem was with challenge validation over IPv6.

Issue resolved.

AntoniosHadji · August 14, 2017, 8:18pm

How did you resolve the ipv6 issue?

SDKiller · August 14, 2017, 9:12pm

As I had no access to make server support IPv6 properly, the only way was
to remove AAAA records from DNS.

system · September 13, 2017, 9:13pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.