Unable to renew certificate

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: servicdesk.thepilotgroup.co.uk

Today the certificate expired on our spiceworks servicedesk website.

I have attempted to renew the certificate today using the wacs application.

Upon attempting renewal of servicedesk.thepilotgroup.co.uk i get this error.

[INFO] Renewing certificate for [Manual] servicedesk.thepilotgroup.co.uk
[INFO] Authorize identifier: servicedesk.thepilotgroup.co.uk
[INFO] Authorizing servicedesk.thepilotgroup.co.uk using http-01 validation (FileSystem)
[INFO] Answer should now be browsable at http://servicedesk.thepilotgroup.co.uk/.well-known/acme-challenge/7L31VcXQ_paVBvd2je1nhOakobmoDRGzRJ5S7f7MPvI
[INFO] Preliminary validation looks good, but ACME will be more thorough…
[EROR] {
“type”: “urn:ietf:params:acme:error:unauthorized”,
“detail”: “Invalid response from http://servicedesk.thepilotgroup.co.uk/.well-known/acme-challenge/7L31VcXQ_paVBvd2je1nhOakobmoDRGzRJ5S7f7MPvI [185.123.99.39]: “\r\n404 Not Found\r\n\r\n

404 Not Found

\r\n
nginx\r\n””,
“status”: 403
}
[EROR] Authorization result: invalid
[EROR] Renewal for [Manual] servicedesk.thepilotgroup.co.uk failed, will retry on next run

Can anyone offer me insight on how i should proceed? Is it best I attempt to create a new cert instead?

Thanks

Joe

1 Like

Hi Guys

Any help would be greatly appreciated, i am a bit of a novice with letsencrypt

I can’t find any obvious reason why this would now be failing.

I do see a typo in your initial description:

[but that seems unrelated]

You may need to speak with Site Ground; as they are no longer able to connect your site via HTTPS.
In the interim, if you can, try disabling the HTTP to HTTPS redirect.
That way, your site may still be reachable via HTTP:
http://servicedesk.thepilotgroup.co.uk/

1 Like

Hi @joeprovonchaPGS

Wacs.exe is a Windows program. But that link

http://servicedesk.thepilotgroup.co.uk/.well-known/acme-challenge/7L31VcXQ_paVBvd2je1nhOakobmoDRGzRJ5S7f7MPvI

shows a nginx answer.

Where do you run Wacs? On the same machine, ip 185.123.99.39?

Hi Guys

Thanks for getting back to me. This is less urgent now so don’t worry too much. I have deduced there is an issue with the subdomain from siteground which seems to have coincided with cert expiry.

The server is windows server but we Spiceworks Apache on the server, hence the nginx.

Anyway thanks for your help guys.

This can be closed now.

Cheers

Joe

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.