I can login to a root shell on my machine (yes or no, or I don't know): yes
Additional info -
• The Nginx proxy manager docker is deployed on my ubuntu server 22.04
• My domain is added in cloudflare wherein i have created A record, entered subdomain in name and my vps external ip in ipv4 address & lastly proxy status is off (dns only)
@rg305 thanks for the prompt reply. I don't really know much about networking or encryption, only thing i ever use it is to just simply reverse proxy my subdomain. As i can infer from your comments it being a permission related problem and i should exclude acme challenge path from the restriction but i haven't really enforced it or changed anything myself, everything is at default to the best of my knowledge. (In both cloudflare and NPM )
How would i go about resolving this issue from my end
I'd start with the full nginx configuration. nginx -T
[mind you, I know near to nothing about NPM - and don't care to learn any of it]
Somewhere within that config, you should see the HTTP vhost that handles that FQDN.
Therein, you should probably add a location section to handle the challenge requests without requiring authentication.
Also if it helps i would like to add lets encrypt ssl certificate generation had failed for me with Caddy as well so i thought of trying Nginx Proxy Manager
192 lines that "set_real_ip_from ..." - Why? That won't scale well!
The real meat and potatoes are at the bottom of the paste:
# configuration file /data/nginx/proxy_host/1.conf:
# ------------------------------------------------------------
# adguard.xd003.site
# ------------------------------------------------------------
server {
set $forward_scheme http;
set $server "adguard";
set $port 80;
listen 80;
listen [::]:80;
server_name adguard.xd003.site;
access_log /data/logs/proxy-host-1_access.log proxy;
error_log /data/logs/proxy-host-1_error.log warn;
location / {
# Proxy!
include conf.d/include/proxy.conf;
}
# Custom
include /data/nginx/custom/server_proxy[.]conf;
}
The included proxy.conf file may be problematic for the ACME challenge requests.
I would create a separate location section just to handle the challenge requests [and exclude the use of the proxy.conf file therein].
Thanks for all the help, after some trial and error, i have fixed the error. The issue was that port 80 was already occupied on my server by some other container. After sorting that out, i was able to generate ssl certificate using Nginx Proxy manager successfully