Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: pianoconquest.com
I ran this command:
sudo docker run -it --rm
-v /home/stanleyndunwere/sites/holder/:/etc/letsencrypt/
-v /docker-volumes/var/lib/letsencrypt:/var/lib/letsencrypt/
-v /home/stanleyndunwere/sites/:/data/letsencrypt/challenge/
-v “/home/stanleyndunwere/sites/log:/var/log/letsencrypt/”
certbot/certbot
certonly --webroot
–email test@pianoconquest.com --agree-tos --no-eff-email
–webroot-path=/data/letsencrypt/challenge/
–staging
-d pianoconquest.com
-d www.pianoconquest.com
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for pianoconquest.com
http-01 challenge for www.pianoconquest.com
Using the webroot path /data/letsencrypt/challenge for all unmatched domains.
Waiting for verification…
Challenge failed for domain pianoconquest.com
Challenge failed for domain www.pianoconquest.com
http-01 challenge for pianoconquest.com
http-01 challenge for www.pianoconquest.com
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: pianoconquest.com
Type: unauthorized
Detail: Invalid response from
https://pianoconquest.com/.well-known/acme-challenge/f_FkahZW6TM5px40STmKKH2vZTG_d68jFkrDWUeL3BA
[34.66.237.44]: “\r\n404 Not
Found\r\n\r\n404 Not
\r\n
Found
nginx\r\n”
Domain: www.pianoconquest.com
Type: unauthorized
Detail: Invalid response from
https://www.pianoconquest.com/.well-known/acme-challenge/hE_IrfeWe4730RT6MQjhuEJ75JJfEaR9AoD8uJKyWxw
[34.66.237.44]: “\r\n404 Not
Found\r\n\r\n404 Not
\r\n
Found
nginx\r\n”
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
My web server is (include version): nginx 1.13.0
The operating system my web server runs on is (include version): ubuntu 18.04 lts
My hosting provider, if applicable, is: Google Cloud Platform
I can login to a root shell on my machine (yes or no, or I don’t know): Yes I can
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): Not Using a Control Panel
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot): Certbot v 1.3.0 ina docker container
Additional Information:
I ran the same configuration quite a number of times (somewhere north of 10 times but under 15 times using the --staging flag to get the docker container volumes to map correctly) and it was successful for the last three trials. The domains validated properly and I had a sample certificate generated and stored in my designated location inside a folder with my domain name as the folder name ie pianoconquest.com/other/letsencrypt/stuff.
I deleted those certificates as my work directory was messed up and I wanted to generate a new one with a saner directory structure after which I attempted to test again with the --staging flag. This time it failed the challenge and has not been successful ever since.
I’ve looked up my domain at letsdebug.net and it says I should be fine but well… apparently i am not. lol.
I currently have a test file located at pianoconquest.com/.well-known/acme-challenge/test.html. if you want I can touch a new one to prove that the folder is responding to external requests.
I’d appreciate all the help I can get to debug this issue.