SSL Certificate Challenge 3 failed

My domain is:

My web server is

SSL Verification fail

Domain “” challenge3 failed. Response from “” was:

Error: Invalid response from “function toNumbers(d){var e=[];d.replace(/(…)/g,func”

Full Error: { “type”: “http-01”, “status”: “invalid”, “error”: { “type”: “urn:ietf:params:acme:error:unauthorized”, “detail”: “Invalid response from “\u003chtml\u003e\u003cbody\u003e\u003cscript type=“text/javascript” src=”/aes.js” \u003e\u003c/script\u003e\u003cscript\u003efunction toNumbers(d){var e=[];d.replace(/(…)/g,func"", “status”: 403 }, “url”: “”, “token”: “ir-4Q2rhMTKa46bkUbcdjuhNHhCIXQQ_lHa-C6nxKEU”, “validationRecord”: [ { “url”: “”, “hostname”: “”, “port”: “80”, “addressesResolved”: [ “” ], “addressUsed”: “” } ] }

How did you try to issue the certificate?

Automatic FTP Verification

OK, so you mean :slight_smile: .

How this works is that logs into your server and copies the challenge files into your website's web root. Only problem is, your website gives a 403 for any request. You'd need to configure nginx to allow requests for /.well-known/acme-challenge/* to be served from the directory where sslforfree uploads the challenge files.

It might be simpler at this time for you to use the DNS Validation method, or possibly install Certbot and allow the Certbot --nginx plugin to handle this all for you.

Byethost uses some “security” software that blocks the Let’s Encrypt validation requests.

See, for example, this StackOverflow post:

You need to (get them to) disable it, or whitelist the /.well-known/acme-challenge/ path, or use DNS validation.


DNS txt record option does not exist in my cpanel

Oh, that sucks, it means your host disabled the Advanced Zone Editor feature in your package.

I think you’re stuck in that case, unless you change DNS hosts or web hosts.

1 Like

Means i have to change my web host

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.