SSL installation issue in subdomain + CWP

Please fill out the fields below so we can help you better.

My domain is: investors.gaiagrid.io

I ran this command: install ssl from CWP panel autossl

It produced this output:
AutoSSL Issue Failed![Thu Jun 15 08:14:17 UTC 2017] Single domain=‘investors.gaiagrid.io
[Thu Jun 15 08:14:17 UTC 2017] Getting domain auth token for each domain
[Thu Jun 15 08:14:17 UTC 2017] Getting webroot for domain=‘investors.gaiagrid.io
[Thu Jun 15 08:14:17 UTC 2017] Getting new-authz for domain=‘investors.gaiagrid.io
[Thu Jun 15 08:14:18 UTC 2017] The new-authz request is ok.
[Thu Jun 15 08:14:18 UTC 2017] Verifying:investors.gaiagrid.io
[Thu Jun 15 08:14:21 UTC 2017] investors.gaiagrid.io:Verify error:Invalid response from http://investors.gaiagrid.io/.well-known/acme-challenge/qRBsjdxqN_Pk0X7hweNesqZ_o31OtEX5gLW6ndS5mR4:
[Thu Jun 15 08:14:21 UTC 2017] Please add ‘–debug’ or ‘–log’ to check more details.
[Thu Jun 15 08:14:21 UTC 2017] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh
AutoSSL Issue Failed![Thu Jun 15 08:14:22 UTC 2017] Single domain=‘investors.gaiagrid.io
[Thu Jun 15 08:14:22 UTC 2017] Getting domain auth token for each domain
[Thu Jun 15 08:14:22 UTC 2017] Getting webroot for domain=‘investors.gaiagrid.io
[Thu Jun 15 08:14:22 UTC 2017] Getting new-authz for domain=‘investors.gaiagrid.io
[Thu Jun 15 08:14:24 UTC 2017] The new-authz request is ok.
[Thu Jun 15 08:14:24 UTC 2017] Verifying:investors.gaiagrid.io
[Thu Jun 15 08:14:27 UTC 2017] investors.gaiagrid.io:Verify error:Invalid response from http://investors.gaiagrid.io/.well-known/acme-challenge/TF4knmtxGBkiFvrftgpsUTWc_S4n6YIARKiNteqRzxY:
[Thu Jun 15 08:14:27 UTC 2017] Please add ‘–debug’ or ‘–log’ to check more details.
[Thu Jun 15 08:14:27 UTC 2017] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh

My web server is (include version): apache

The operating system my web server runs on is (include version): centoswebpanel with centos 6.5

My hosting provider, if applicable, is: google

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):centoswebpanel

telnet investors.gaiagrid.io 80
GET /.well-known/acme-challenge/test.txt HTTP/1.1
host: investors.gaiagrid.io
HTTP/1.1 301 Moved Permanently
Date: Thu, 15 Jun 2017 23:47:33 GMT
Server: Apache/2.4.25 (Unix) OpenSSL/1.0.1e-fips
Location: https://investors.gaiagrid.io/.well-known/acme-challenge/test.txt
Content-Length: 273
Content-Type: text/html; charset=iso-8859-1
!DOCTYPE HTML PUBLIC “-//IETF//DTD HTML 2.0//EN”>
html>head>
title>301 Moved Permanently/title>
/head>body>
h1>Moved Permanently/h1>
p>The document has moved a href=“https://investors.gaiagrid.io/.well-nown/acme-challenge/test.txt”>here/a>./p>
/body>/html>
Connection to host lost.

So:
http://investors.gaiagrid.io/.well-known/acme-challenge/test.txt
becomes
https://investors.gaiagrid.io/.well-nown/acme-challenge/test.txt

But do they have the same root folder? (probably not)
Are all the :80 and :443 sections configured properly? (I don’t think so)
Why not?
https://investors.gaiagrid.io/ connects to a site with a cert for:
DNS Name=gaiagrid.io
DNS Name=www.gaiagrid.io
https://gaiagrid.io/ works as expected
https://www.gaiagrid.io/ works as expected
https://investors.gaiagrid.io/ is not connecting to a separate site for “investors”

Long story short…
The acme-challenge information may be going into a folder related to the investors site setup but the acme-challenge requests are going into a folder related to the www site.

That is why I always recommend putting a “test.txt” file where you would expect it to be seen from the Internet.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.