I’ve been using Let’s Encrypt certificates on my Synology NAS home server and now I’d like to create certificates for my new home server where I’m hosting Atlassian apps (Jira, Confluence).
This is my first time I’m trying to get certificates using Certbot. I’m not successful and I don’t know what I’m doing wrong. I’ve been always getting the following error from LE despite various ways:
Detail: Error reading HTTP response body: unexpected EOF
My environment is:
- Debian 9 with nginx 1.10.3
- JIRA 7.8 with Tomcat 8
First, I tried to follow instructions on https://certbot.eff.org/lets-encrypt/debianstretch-nginx:
certbot --authenticator webroot --installer nginx
After I got above-mentioned error, I tried semi-automated and manual approach, with the same result:
certbot certonly --test-cert --webroot -w /opt/atlassian/jira/atlassian-jira/ -d jira.craz.cz
certbot certonly --test-cert --manual -d jira.craz.cz
I’m able to download the challenge file without a problem (via curl from a different server outside of local netowork); I do get exactly the same file contents.
And I see that Let’s Encrypt downloaded the file with 200 OK response
127.0.0.1 40x2739x1 - [09/Jun/2018:00:40:30 +0200] "GET /.well-known/acme-challenge/H5IjaVacYg1lJq9SR8EAd-2mmL9mn9zYIsiCKCiap9k HTTP/1.0" 200 87 5 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)" "-"
/var/log/letsencrypt/letsencrypt.log log does not show more information.
What am I doing wrong?
Thanks for any hints or guidance.