Trouble renewing cert from Certbot on Windows

My domain is: equalitytasmania.org.au

I ran this command: On my Windows PC: certbot renew certonly --standalone

It produced this output:

Saving debug log to C:\Certbot\log\letsencrypt.log

Processing C:\Certbot\renewal\equalitytasmania.org.au.conf

Renewing an existing certificate for equalitytasmania.org.au

Certbot failed to authenticate some domains (authenticator: standalone). The Certificate Authority reported these problems:
Domain: equalitytasmania.org.au
Type: unauthorized
Detail: 184.168.99.50: Invalid response from http://equalitytasmania.org.au/.well-known/acme-challenge/g3D-Q9HU7ASIK3prkXpe-u2mUH65QYvqWL4RTx-EDNc: 404

Hint: The Certificate Authority failed to download the challenge files from the temporary standalone webserver started by Certbot on port 80. Ensure that the listed domains point to this machine and that it can accept inbound connections from the internet.

Failed to renew certificate equalitytasmania.org.au with error: Some challenges have failed.

All renewals failed. The following certificates could not be renewed:
C:\Certbot\live\equalitytasmania.org.au\fullchain.pem (failure)

1 renew failure(s), 0 parse failure(s)
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile C:\Certbot\log\letsencrypt.log or re-run Certbot with -v for more details.

My web server is (include version): Apache Version 2.4.58

The operating system my web server runs on is (include version): linux 2.6.32-954.3.5.lve1.4.93.el6.x86_64

My hosting provider, if applicable, is: godaddy

I can login to a root shell on my machine (yes or no, or I don't know): no

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): cpanel 110.0 (build 15)

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 2.7.4

Hey folks,

Trying to renew this certificate on my godaddy hosting from my windows machine. The first time around certbot told me to create the challenge files and everything was okay. This time renewing, certbot doesn't help me create the challenge files and just goes looking for them, resulting in a 404.

What am I doing wrong that I don't get the opportunity to manually create the challenge files on my webserver?

Thanks!

Hi @0fooze0, and welcome to the LE community forum

Where do you need to use the certificate?
You are talking about two very different systems:

• linux 2.6.32-954.3.5.lve1.4.93.el6.x86_64
• I ran this command: On my Windows PC: certbot renew certonly --standalone

Also, certbot for Windows is no longer being supports.
If you do need a Windows ACME client, I have used https://certififytheweb.com/ without fail.

Thanks @rg305!

I don't have shell on my hosting so I'm trying to create the certificates on my windows machine using the process described here: User Guide — Certbot 2.9.0 documentation

Ok, you are in the right place but you'll need to include a "paused step by step" instruction in the certbot command line. So, that you have time to make the necessary file update.
See --manual parameter in the docs [link below]:
User Guide — Certbot 2.10.0.dev0 documentation (eff-certbot.readthedocs.io)

That's what I needed, you're amazing!

If you're using GoDaddy for your DNS hosting you can use their API for DNS validation instead of HTTP validation (uploading a challenge response file etc). The benefit is you can automatically renew the cert then deploy it however you want later You can do this using most clients.

Some versions of cpanel also support automated certificate renewal using the AutoSSL plugin, which performs the http challenge response process to validate your domain with the certificate authority.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.