Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
avocetsports.co.uk
I ran this command:
We are using Let’s Encrypt as a plugin on Plesk and found the following when trying to generate an SSL certificate for the domain via GUI. We have used certificates from other vendors in the past.
I have used nslooked & dig using several different DNS providers and all return the correct IP address of 85.91.237.107.
Question is why does it seem that Let Encrypt is trying to contact 82.71.204.1?
It produced this output:
Error: Could not issue a Let’s Encrypt SSL/TLS certificate for avocetsports.co.uk .
Your domain in Plesk is hosted on the IP address(es): , but the DNS challenge used another IP address: 82.71.204.1 .
Please check the actual DNS zone of your domain and make sure that the IP addresses in the DNS zone and for the hosting are the same.
Details
Invalid response from https://acme-v01.api.letsencrypt.org/acme/authz/Z0XMX3Q7cOSjNNXn7Vo_6wi7IC9HJwvMf9XGQf2PbGY.
Details:
Type: urn:acme:error:unauthorized
Status: 403
Detail: Invalid response from http://avocetsports.com/.well-known/acme-challenge/I3jzuBXBl4NCUY3peTB2T8az00Bw_04B0dMRv1Fj8D8 [82.71.204.1]: 404
My web server is (include version): Apache
The operating system my web server runs on is (include version): Cento 6.9
My hosting provider, if applicable, is: We are the provider
I can login to a root shell on my machine (yes or no, or I don’t know): Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): Plesk 12.5.30 Update 76