The client lacks sufficient authorization

Help
1

My domain is: skillz.be

I ran this command: certbot renew --dry-run

It produced this output:

Attempting to renew cert (skillz.be) from /etc/letsencrypt/renewal/skillz.be.conf produced an unexpected error: Failed authorization procedure. www.skillz.be (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.newdomain.com/ [194.9.94.86]: " \n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\n<html xmlns=\"htt". Skipping.
The following certs could not be renewed:
  /etc/letsencrypt/live/skillz.be/fullchain.pem (failure)

There’s no mention of newdomain.com anywhere in my configuration, it does not belong to me.

My web server is (include version): Apache 2.4.29

The operating system my web server runs on is (include version): Ubuntu 18.04

My hosting provider, if applicable, is: Azure

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 0.28.0

2

Is 13.69.54.62 your IP address?

If so, there must be a reference to it on your Apache configuration somewhere.

Open http://www.skillz.be/ in your browser. It redirects to http://www.newdomain.com/.

If you access https://www.skillz.be/, it uses a mismatched certificate for ex-roker.be, but it has the same redirect.

1 Like
3

Straaaaange stuff O_O This is a fresh install of Apache2 … And the mismatch is because I thought you could get 1 certificate for all your virtual hosts :wink: I’m fixing that now. Thanks for the help, I’ll try to figure it out

4

Let’s Encrypt certificates support up to 100 names, any of which can be wildcards (if you use DNS validation).

So you often can use only one certificate, but it has to include every single name from every single virtual host that you need.

5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.