The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet

Gabriel09 · July 25, 2022, 8:00pm

I´m having problems creating a SSL certificate.

My domain is: sgm-tenergy.com.mx

I ran this command: sudo certbot --nginx

It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Please enter the domain name(s) you would like on your certificate (comma and/or
space separated) (Enter 'c' to cancel): sgm-tenergy.com.mx
Requesting a certificate for sgm-tenergy.com.mx

Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: sgm-tenergy.com.mx
Type: unauthorized
Detail: 200.92.196.82: Invalid response from http://sgm-tenergy.com.mx/.well-known/acme-challenge/wItuGBvf3MZCOOqPn8RpmAFj1ZoHi6BvifACL9FQbqI: 404

Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.

My web server is (include version): Ubuntu 20.04

The operating system my web server runs on is (include version):Ubuntu

My hosting provider, if applicable, is: I don't have

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 1.29.0

Bruce5051 · July 25, 2022, 8:07pm

Hi @Gabriel09 , and welcome to the LE community forum

Using this tool Redirect Checker | Check your Statuscode 301 vs 302 with the domain you supplied I get:
.
.
.
.

Result

302 Found
/login/?next=/
200 OK

Problems found:

You use a 302 redirect. This means, that the actually content is temporary not reachable and will come back soon. To use a 302 redirection for generally moved pages is a bad idea. Search engine bot might not follow it or handle it as temporary. For SEO this is also a bad idea, because no link juice will be transferred to the linked page.

.
.
.
.

rg305 · July 25, 2022, 8:24pm

What web server are you using?

Certbot will try using nginx as the web server

But I don't see nginx responding:

curl -Ii http://sgm-tenergy.com.mx/.well-known/acme-challenge/Test_File-1234
HTTP/1.1 404 Not Found
Date: Mon, 25 Jul 2022 20:24:01 GMT
Server: WSGIServer/0.2 CPython/3.8.10
Content-Type: text/html
X-Frame-Options: DENY
Content-Length: 14736
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

Bruce5051 · July 25, 2022, 8:31pm

I also looks like your WSGIServer may not be up-to-date
Here WSGIserver · PyPI shows WSGIserver 1.3, but maybe I found the wrong one.

Gabriel09 · July 25, 2022, 8:32pm

I'm using Django

Gabriel09 · July 25, 2022, 8:37pm

do I need to update it?

Bruce5051 · July 25, 2022, 8:49pm

@Gabriel09 you might want to review some of these previous recent Django issues

Gabriel09 · July 25, 2022, 9:30pm

I didn't find something that could help me

system · August 24, 2022, 9:30pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.