The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet

Help
1

I´m having problems creating a SSL certificate.

My domain is: sgm-tenergy.com.mx

I ran this command: sudo certbot --nginx

It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Please enter the domain name(s) you would like on your certificate (comma and/or
space separated) (Enter 'c' to cancel): sgm-tenergy.com.mx
Requesting a certificate for sgm-tenergy.com.mx

Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: sgm-tenergy.com.mx
Type: unauthorized
Detail: 200.92.196.82: Invalid response from http://sgm-tenergy.com.mx/.well-known/acme-challenge/wItuGBvf3MZCOOqPn8RpmAFj1ZoHi6BvifACL9FQbqI: 404

Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.

My web server is (include version): Ubuntu 20.04

The operating system my web server runs on is (include version):Ubuntu

My hosting provider, if applicable, is: I don't have

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 1.29.0

2

Hi @Gabriel09 , and welcome to the LE community forum :slight_smile:

Using this tool Redirect Checker | Check your Statuscode 301 vs 302 with the domain you supplied I get:
.
.
.
.

Result

302 Found
/login/?next=/
200 OK

Problems found:

  • You use a 302 redirect. This means, that the actually content is temporary not reachable and will come back soon. To use a 302 redirection for generally moved pages is a bad idea. Search engine bot might not follow it or handle it as temporary. For SEO this is also a bad idea, because no link juice will be transferred to the linked page.

    .
    .
    .
    .

1 Like
3

What web server are you using?

Certbot will try using nginx as the web server

But I don't see nginx responding:

curl -Ii http://sgm-tenergy.com.mx/.well-known/acme-challenge/Test_File-1234
HTTP/1.1 404 Not Found
Date: Mon, 25 Jul 2022 20:24:01 GMT
Server: WSGIServer/0.2 CPython/3.8.10
Content-Type: text/html
X-Frame-Options: DENY
Content-Length: 14736
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
3 Likes
4

I also looks like your WSGIServer may not be up-to-date
Here WSGIserver · PyPI shows WSGIserver 1.3, but maybe I found the wrong one.

5

I'm using Django

6

do I need to update it?

7

@Gabriel09 you might want to review some of these previous recent Django issues

1 Like
8

I didn't find something that could help me

9

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.