Unable update certificate (maybe problem with Apache)

esseredigitale · April 25, 2024, 11:53am

Hi,
after real renew certificate command...

I ran this command: certbot renew --dry-run --debug-challenges -v

It produced this output:

Domain: devtest.domogear.com
Type: unauthorized
Detail: 195.231.0.222: Invalid response from http://devtest.domogear.com/.well-known/acme-challenge/NyVcdZjOi06UEdf3-jw4z-NiWIUX41f2vjvyom4SSVY: 404

Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet.

My web server is (include version):

Apache 2.4

The operating system my web server runs on is (include version):

Windows 2019 STD

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

1.18.0

I saw temporarly created .well-known folder on my htdocs folder, but above problem.

Can you help me?

Best regards

rg305 · April 25, 2024, 1:11pm

Hi @esseredigitale, and welcome to the LE community forum

certbot for Windows is no longer being supported.
You should switch to another ACME client for Windows.

I've used https://CertifyTheWeb.com on several different Windows systems without any complaints.

If you can't switch, then you should start by reviewing the Apache config, with the output of:
httpd.exe -t -D DUMP_VHOSTS

Then also compare the webroot contents within the renewal config file with the expected challenge path found in the vhost config file.

esseredigitale · April 25, 2024, 2:54pm

Hi Rudy,
thanks for the welcome.

I used it and it found certbot configuration and warning me to update early, but pressing "Renew all" button nothing happen.
What's wrong?

Best regards

rg305 · April 25, 2024, 3:13pm

CertifyTheWeb is NOT an upgrade to certbot for Windows - it is a replacement.
It is unaware of any certs that may be actively being handled by certbot.
When you click Managed Certificates, do you see any certificates there?

esseredigitale · April 25, 2024, 3:27pm

Ok, I created a new item under "Menaged certificates" and I put all my domains under the certificates likes did certbot.
After click Renew I receive same error:
2024-04-25 17:25:32.367 +02:00 [INF] ---- Beginning Request [rest.domogear.com NEW] ----
2024-04-25 17:25:32.367 +02:00 [INF] Certify/6.0.16.0 (Windows; Microsoft Windows NT 10.0.17763.0)
2024-04-25 17:25:32.367 +02:00 [INF] Beginning certificate request process: rest.domogear.com NEW using ACME provider Anvil
2024-04-25 17:25:32.367 +02:00 [INF] The selected Certificate Authority is: Let's Encrypt
2024-04-25 17:25:32.367 +02:00 [INF] Requested identifiers to include on certificate: rest.domogear.com [dns];app.4wrks.com [dns];colligit.domogear.com [dns];devtest.domogear.com [dns];grafana.4wrks.com [dns];grafana.domogear.com [dns];web.domogear.com [dns]
2024-04-25 17:25:34.648 +02:00 [INF] Created ACME Order: https://acme-v02.api.letsencrypt.org/acme/order/1692752397/264010207197
2024-04-25 17:25:35.993 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005407/VpoY_Q
2024-04-25 17:25:36.305 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005407/IQYV7A
2024-04-25 17:25:37.239 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005417/_wWhRw
2024-04-25 17:25:37.551 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005417/VRDjmw
2024-04-25 17:25:38.502 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005427/kbnyrA
2024-04-25 17:25:38.815 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005427/_lxRew
2024-04-25 17:25:39.758 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005437/I4XszQ
2024-04-25 17:25:40.069 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005437/M2Xi1Q
2024-04-25 17:25:41.005 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005447/1QOeRg
2024-04-25 17:25:41.316 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005447/tm5d8A
2024-04-25 17:25:42.250 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005457/GvtwJA
2024-04-25 17:25:42.564 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005457/iuzyKg
2024-04-25 17:25:43.503 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005467/MdbItw
2024-04-25 17:25:43.815 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342917005467/eZ9vtA
2024-04-25 17:25:54.193 +02:00 [WRN] Http Challenge Server process enabled but unavailable (port 80 may be in use).
2024-04-25 17:25:54.193 +02:00 [INF] Preparing automated challenge responses for: rest.domogear.com [dns]
2024-04-25 17:25:54.193 +02:00 [INF] Preparing challenge response for the issuing Certificate Authority to check at: http://rest.domogear.com/.well-known/acme-challenge/srSMpnsfNvSvubHND3HjJLdbqgnTvHWo3KfBsdOXNqI with content srSMpnsfNvSvubHND3HjJLdbqgnTvHWo3KfBsdOXNqI.2YsNZWDVV6tlF0VY6Pdt4Buu_MtX-0-LOwhK8YaFvvU
2024-04-25 17:25:54.193 +02:00 [INF] If the challenge response file is not accessible at this exact URL the validation will fail and a certificate will not be issued.
2024-04-25 17:25:54.193 +02:00 [INF] Using website path [Auto]
2024-04-25 17:25:54.193 +02:00 [WRN] The website root path for rest.domogear.com NEW could not be determined. Fileysystem based http validation will not be possible.
2024-04-25 17:25:54.193 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/srSMpnsfNvSvubHND3HjJLdbqgnTvHWo3KfBsdOXNqI [proxyAPI: True, timeout: 5000ms]
2024-04-25 17:25:54.276 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/srSMpnsfNvSvubHND3HjJLdbqgnTvHWo3KfBsdOXNqI [proxyAPI: False, timeout: 5000ms]
2024-04-25 17:25:54.278 +02:00 [WRN] (local check) URL is not accessible. Check failed. HTTP NotFound
2024-04-25 17:25:54.278 +02:00 [ERR] Failed prerequisite configuration checks (SSL_ACME)
2024-04-25 17:25:54.288 +02:00 [INF] Resuming certificate request using CA: Let's Encrypt
2024-04-25 17:25:54.288 +02:00 [INF] Attempting challenge response validation for: rest.domogear.com [dns]
2024-04-25 17:25:54.289 +02:00 [INF] [Progress] Checking automated challenge response for: rest.domogear.com [dns]
2024-04-25 17:25:54.289 +02:00 [INF] Submitting challenge for validation: rest.domogear.com [dns] http://rest.domogear.com/.well-known/acme-challenge/srSMpnsfNvSvubHND3HjJLdbqgnTvHWo3KfBsdOXNqI
2024-04-25 17:25:58.232 +02:00 [ERR] [Progress] Validation failed: rest.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://rest.domogear.com/.well-known/acme-challenge/srSMpnsfNvSvubHND3HjJLdbqgnTvHWo3KfBsdOXNqI: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 17:25:58.244 +02:00 [INF] Attempting challenge response validation for: app.4wrks.com [dns]
2024-04-25 17:25:58.244 +02:00 [INF] [Progress] Checking automated challenge response for: app.4wrks.com [dns]
2024-04-25 17:25:58.244 +02:00 [INF] Submitting challenge for validation: app.4wrks.com [dns] http://app.4wrks.com/.well-known/acme-challenge/eY-Ln_uq_1ig8LJRjXyjpR2VppZg8F4xbG127Gf30YA
2024-04-25 17:26:02.214 +02:00 [ERR] [Progress] Validation failed: app.4wrks.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://app.4wrks.com/.well-known/acme-challenge/eY-Ln_uq_1ig8LJRjXyjpR2VppZg8F4xbG127Gf30YA: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 17:26:02.222 +02:00 [INF] Attempting challenge response validation for: colligit.domogear.com [dns]
2024-04-25 17:26:02.223 +02:00 [INF] [Progress] Checking automated challenge response for: colligit.domogear.com [dns]
2024-04-25 17:26:02.223 +02:00 [INF] Submitting challenge for validation: colligit.domogear.com [dns] http://colligit.domogear.com/.well-known/acme-challenge/FRgFl4fwAHn7-smIC83FSO-UzkPHCggi3GkKoI1DDZQ
2024-04-25 17:26:06.164 +02:00 [ERR] [Progress] Validation failed: colligit.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://colligit.domogear.com/.well-known/acme-challenge/FRgFl4fwAHn7-smIC83FSO-UzkPHCggi3GkKoI1DDZQ: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 17:26:06.171 +02:00 [INF] Attempting challenge response validation for: devtest.domogear.com [dns]
2024-04-25 17:26:06.171 +02:00 [INF] [Progress] Checking automated challenge response for: devtest.domogear.com [dns]
2024-04-25 17:26:06.171 +02:00 [INF] Submitting challenge for validation: devtest.domogear.com [dns] http://devtest.domogear.com/.well-known/acme-challenge/ff_PrM0qx_k-BokcoDQHzJHJ2KzDBCxKCSmmY9TIVPA
2024-04-25 17:26:10.107 +02:00 [ERR] [Progress] Validation failed: devtest.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://devtest.domogear.com/.well-known/acme-challenge/ff_PrM0qx_k-BokcoDQHzJHJ2KzDBCxKCSmmY9TIVPA: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 17:26:10.115 +02:00 [INF] Attempting challenge response validation for: grafana.4wrks.com [dns]
2024-04-25 17:26:10.115 +02:00 [INF] [Progress] Checking automated challenge response for: grafana.4wrks.com [dns]
2024-04-25 17:26:10.115 +02:00 [INF] Submitting challenge for validation: grafana.4wrks.com [dns] http://grafana.4wrks.com/.well-known/acme-challenge/Tphfa9nwh_24Zh--lm_1XxXYOUd772RXz8sqS0AYsLM
2024-04-25 17:26:14.060 +02:00 [ERR] [Progress] Validation failed: grafana.4wrks.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://grafana.4wrks.com/.well-known/acme-challenge/Tphfa9nwh_24Zh--lm_1XxXYOUd772RXz8sqS0AYsLM: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 17:26:14.069 +02:00 [INF] Attempting challenge response validation for: grafana.domogear.com [dns]
2024-04-25 17:26:14.070 +02:00 [INF] [Progress] Checking automated challenge response for: grafana.domogear.com [dns]
2024-04-25 17:26:14.070 +02:00 [INF] Submitting challenge for validation: grafana.domogear.com [dns] http://grafana.domogear.com/.well-known/acme-challenge/-2wozM6rjcHNtJBnMJ_iBXO99MwH2oTvLFj9FazOHZg
2024-04-25 17:26:18.024 +02:00 [ERR] [Progress] Validation failed: grafana.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://grafana.domogear.com/.well-known/acme-challenge/-2wozM6rjcHNtJBnMJ_iBXO99MwH2oTvLFj9FazOHZg: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 17:26:18.032 +02:00 [INF] Attempting challenge response validation for: web.domogear.com [dns]
2024-04-25 17:26:18.033 +02:00 [INF] [Progress] Checking automated challenge response for: web.domogear.com [dns]
2024-04-25 17:26:18.033 +02:00 [INF] Submitting challenge for validation: web.domogear.com [dns] http://web.domogear.com/.well-known/acme-challenge/BJSlwe9rrZg6CYF8eTE9lO6yi_bYb3M8BWooG-NoCv8
2024-04-25 17:26:21.968 +02:00 [ERR] [Progress] Validation failed: web.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://web.domogear.com/.well-known/acme-challenge/BJSlwe9rrZg6CYF8eTE9lO6yi_bYb3M8BWooG-NoCv8: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 17:26:21.976 +02:00 [ERR] Validation of the required challenges did not complete successfully. Validation failed: web.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://web.domogear.com/.well-known/acme-challenge/BJSlwe9rrZg6CYF8eTE9lO6yi_bYb3M8BWooG-NoCv8: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]

What's wrong?

esseredigitale · April 25, 2024, 6:12pm

Hi Rudy, I changed something, now I sow .well-knokn directory under my htdocs folder, but nothing:
2024-04-25 20:08:31.549 +02:00 [INF] ---- Beginning Request [rest.domogear.com NEW] ----
2024-04-25 20:08:31.549 +02:00 [INF] Certify/6.0.16.0 (Windows; Microsoft Windows NT 10.0.17763.0)
2024-04-25 20:08:31.550 +02:00 [INF] Beginning certificate request process: rest.domogear.com NEW using ACME provider Anvil
2024-04-25 20:08:31.550 +02:00 [INF] The selected Certificate Authority is: Let's Encrypt
2024-04-25 20:08:31.550 +02:00 [INF] Requested identifiers to include on certificate: rest.domogear.com [dns];app.4wrks.com [dns];colligit.domogear.com [dns];devtest.domogear.com [dns];grafana.4wrks.com [dns];grafana.domogear.com [dns];web.domogear.com [dns]
2024-04-25 20:08:32.530 +02:00 [INF] Created ACME Order: https://acme-v02.api.letsencrypt.org/acme/order/1692752397/264042438757
2024-04-25 20:08:33.785 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042737/6Tztmg
2024-04-25 20:08:34.097 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042737/zDkVhQ
2024-04-25 20:08:35.047 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042747/1MarkQ
2024-04-25 20:08:35.359 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042747/KuI33w
2024-04-25 20:08:36.307 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042757/7YVMYg
2024-04-25 20:08:36.618 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042757/DT61sQ
2024-04-25 20:08:37.554 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042767/2rlbkQ
2024-04-25 20:08:37.868 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042767/SW8r0g
2024-04-25 20:08:38.811 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042777/J6wKdQ
2024-04-25 20:08:39.121 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042777/x3uqiQ
2024-04-25 20:08:40.054 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042787/NMt9NQ
2024-04-25 20:08:40.366 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042787/ANOpbw
2024-04-25 20:08:41.315 +02:00 [INF] Got http-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042797/BpGiSw
2024-04-25 20:08:41.628 +02:00 [INF] Got dns-01 challenge https://acme-v02.api.letsencrypt.org/acme/chall-v3/342936042797/Wf08kA
2024-04-25 20:08:52.091 +02:00 [WRN] Http Challenge Server process enabled but unavailable (port 80 may be in use).
2024-04-25 20:08:52.091 +02:00 [INF] Preparing automated challenge responses for: rest.domogear.com [dns]
2024-04-25 20:08:52.091 +02:00 [INF] Preparing challenge response for the issuing Certificate Authority to check at: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck with content SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck.2YsNZWDVV6tlF0VY6Pdt4Buu_MtX-0-LOwhK8YaFvvU
2024-04-25 20:08:52.091 +02:00 [INF] If the challenge response file is not accessible at this exact URL the validation will fail and a certificate will not be issued.
2024-04-25 20:08:52.091 +02:00 [INF] Using website path E:\web\apache\Apache24\htdocs
2024-04-25 20:08:52.092 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: True, timeout: 5000ms]
2024-04-25 20:08:52.175 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: False, timeout: 5000ms]
2024-04-25 20:08:52.232 +02:00 [WRN] (local check) URL is not accessible. Check failed. HTTP NotFound
2024-04-25 20:08:52.243 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: True, timeout: 5000ms]
2024-04-25 20:08:52.292 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: False, timeout: 5000ms]
2024-04-25 20:08:52.293 +02:00 [WRN] (local check) URL is not accessible. Check failed. HTTP NotFound
2024-04-25 20:08:52.304 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: True, timeout: 5000ms]
2024-04-25 20:08:52.351 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: False, timeout: 5000ms]
2024-04-25 20:08:52.351 +02:00 [WRN] (local check) URL is not accessible. Check failed. HTTP NotFound
2024-04-25 20:08:52.363 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: True, timeout: 5000ms]
2024-04-25 20:08:52.409 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: False, timeout: 5000ms]
2024-04-25 20:08:52.410 +02:00 [WRN] (local check) URL is not accessible. Check failed. HTTP NotFound
2024-04-25 20:08:52.421 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: True, timeout: 5000ms]
2024-04-25 20:08:52.484 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: False, timeout: 5000ms]
2024-04-25 20:08:52.485 +02:00 [WRN] (local check) URL is not accessible. Check failed. HTTP NotFound
2024-04-25 20:08:52.495 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: True, timeout: 5000ms]
2024-04-25 20:08:52.535 +02:00 [INF] Checking URL is accessible: http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck [proxyAPI: False, timeout: 5000ms]
2024-04-25 20:08:52.536 +02:00 [WRN] (local check) URL is not accessible. Check failed. HTTP NotFound
2024-04-25 20:08:52.536 +02:00 [ERR] Failed prerequisite configuration checks (SSL_ACME)
2024-04-25 20:08:52.551 +02:00 [INF] Resuming certificate request using CA: Let's Encrypt
2024-04-25 20:08:52.551 +02:00 [INF] Attempting challenge response validation for: rest.domogear.com [dns]
2024-04-25 20:08:52.551 +02:00 [INF] [Progress] Checking automated challenge response for: rest.domogear.com [dns]
2024-04-25 20:08:52.551 +02:00 [INF] Submitting challenge for validation: rest.domogear.com [dns] http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck
2024-04-25 20:08:56.505 +02:00 [ERR] [Progress] Validation failed: rest.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://rest.domogear.com/.well-known/acme-challenge/SpGHr0P_kaYmZP35MTSX_pMUWY4kjkWvfzFCVp-9qck: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 20:08:56.558 +02:00 [INF] Attempting challenge response validation for: app.4wrks.com [dns]
2024-04-25 20:08:56.558 +02:00 [INF] [Progress] Checking automated challenge response for: app.4wrks.com [dns]
2024-04-25 20:08:56.558 +02:00 [INF] Submitting challenge for validation: app.4wrks.com [dns] http://app.4wrks.com/.well-known/acme-challenge/7mQTjwC_LvHLn90FUlqCNpKxOMxmR221oEUJMqHYLfw
2024-04-25 20:09:00.492 +02:00 [ERR] [Progress] Validation failed: app.4wrks.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://app.4wrks.com/.well-known/acme-challenge/7mQTjwC_LvHLn90FUlqCNpKxOMxmR221oEUJMqHYLfw: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 20:09:00.518 +02:00 [INF] Attempting challenge response validation for: colligit.domogear.com [dns]
2024-04-25 20:09:00.518 +02:00 [INF] [Progress] Checking automated challenge response for: colligit.domogear.com [dns]
2024-04-25 20:09:00.518 +02:00 [INF] Submitting challenge for validation: colligit.domogear.com [dns] http://colligit.domogear.com/.well-known/acme-challenge/2f56s_dxJv1aU2i21adqpDske80zfw8kB7BiZYrqiyA
2024-04-25 20:09:04.474 +02:00 [ERR] [Progress] Validation failed: colligit.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://colligit.domogear.com/.well-known/acme-challenge/2f56s_dxJv1aU2i21adqpDske80zfw8kB7BiZYrqiyA: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 20:09:04.487 +02:00 [INF] Attempting challenge response validation for: devtest.domogear.com [dns]
2024-04-25 20:09:04.487 +02:00 [INF] [Progress] Checking automated challenge response for: devtest.domogear.com [dns]
2024-04-25 20:09:04.487 +02:00 [INF] Submitting challenge for validation: devtest.domogear.com [dns] http://devtest.domogear.com/.well-known/acme-challenge/4Yfrp09gr2a4m79WHyYGqNT7nMTzVF9qWStoW8iu9eo
2024-04-25 20:09:08.427 +02:00 [ERR] [Progress] Validation failed: devtest.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://devtest.domogear.com/.well-known/acme-challenge/4Yfrp09gr2a4m79WHyYGqNT7nMTzVF9qWStoW8iu9eo: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 20:09:08.444 +02:00 [INF] Attempting challenge response validation for: grafana.4wrks.com [dns]
2024-04-25 20:09:08.444 +02:00 [INF] [Progress] Checking automated challenge response for: grafana.4wrks.com [dns]
2024-04-25 20:09:08.444 +02:00 [INF] Submitting challenge for validation: grafana.4wrks.com [dns] http://grafana.4wrks.com/.well-known/acme-challenge/EbnaBK0aMdg1zoxHU9-wA85lcnbE2kHTddy_eohQ0oY
2024-04-25 20:09:12.398 +02:00 [ERR] [Progress] Validation failed: grafana.4wrks.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://grafana.4wrks.com/.well-known/acme-challenge/EbnaBK0aMdg1zoxHU9-wA85lcnbE2kHTddy_eohQ0oY: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 20:09:12.414 +02:00 [INF] Attempting challenge response validation for: grafana.domogear.com [dns]
2024-04-25 20:09:12.414 +02:00 [INF] [Progress] Checking automated challenge response for: grafana.domogear.com [dns]
2024-04-25 20:09:12.414 +02:00 [INF] Submitting challenge for validation: grafana.domogear.com [dns] http://grafana.domogear.com/.well-known/acme-challenge/KfBVi_TWqPqhPv9qn2iB-hNHlgMKitkU5BltCVawIlI
2024-04-25 20:09:16.348 +02:00 [ERR] [Progress] Validation failed: grafana.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://grafana.domogear.com/.well-known/acme-challenge/KfBVi_TWqPqhPv9qn2iB-hNHlgMKitkU5BltCVawIlI: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 20:09:16.377 +02:00 [INF] Attempting challenge response validation for: web.domogear.com [dns]
2024-04-25 20:09:16.377 +02:00 [INF] [Progress] Checking automated challenge response for: web.domogear.com [dns]
2024-04-25 20:09:16.377 +02:00 [INF] Submitting challenge for validation: web.domogear.com [dns] http://web.domogear.com/.well-known/acme-challenge/D4USqtCzYNfRBNJJ0RbqfB2OQ8jhqysBMCuX4U9W2PI
2024-04-25 20:09:20.320 +02:00 [ERR] [Progress] Validation failed: web.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://web.domogear.com/.well-known/acme-challenge/D4USqtCzYNfRBNJJ0RbqfB2OQ8jhqysBMCuX4U9W2PI: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 20:09:20.350 +02:00 [ERR] Validation of the required challenges did not complete successfully. Validation failed: web.domogear.com [dns]
Response from Certificate Authority: 195.231.0.222: Invalid response from http://web.domogear.com/.well-known/acme-challenge/D4USqtCzYNfRBNJJ0RbqfB2OQ8jhqysBMCuX4U9W2PI: 404 [Forbidden :: urn:ietf:params:acme:error:unauthorized]
2024-04-25 20:09:20.380 +02:00 [INF] Performing Post-Request (Deployment) Tasks..
2024-04-25 20:09:20.380 +02:00 [INF] Task [Deploy to Apache] :: Task is enabled but will not run because primary request unsuccessful.
2024-04-25 20:09:20.380 +02:00 [ERR] Deploy to Apache :: Task is enabled but will not run because primary request unsuccessful.

Can you help me? Thanks a lot

rg305 · April 26, 2024, 2:36am

I would start here [anyway]:

esseredigitale · April 26, 2024, 5:01am

Sure:
E:\web\apache\Apache24\bin>httpd.exe -t -D DUMP_VHOSTS

VirtualHost configuration:
195.231.0.222:80       is a NameVirtualHost
         default server devtest.domogear.com (E:/web/apache/Apache24/conf/httpd.conf:678)
         port 80 namevhost devtest.domogear.com (E:/web/apache/Apache24/conf/httpd.conf:678)
         port 80 namevhost colligit.domogear.com (E:/web/apache/Apache24/conf/httpd.conf:682)
         port 80 namevhost grafana.domogear.com (E:/web/apache/Apache24/conf/httpd.conf:686)
         port 80 namevhost rest.domogear.com (E:/web/apache/Apache24/conf/httpd.conf:690)
         port 80 namevhost web.domogear.com (E:/web/apache/Apache24/conf/httpd.conf:694)
         port 80 namevhost app.4wrks.com (E:/web/apache/Apache24/conf/httpd.conf:698)
         port 80 namevhost grafana.4wrks.com (E:/web/apache/Apache24/conf/httpd.conf:702)
*:443                  is a NameVirtualHost
         default server web.domogear.com (E:/web/apache/Apache24/conf/extra/httpd-ahssl.conf:177)
         port 443 namevhost web.domogear.com (E:/web/apache/Apache24/conf/extra/httpd-ahssl.conf:177)
         port 443 namevhost rest.domogear.com (E:/web/apache/Apache24/conf/extra/httpd-ahssl.conf:190)
         port 443 namevhost devtest.domogear.com (E:/web/apache/Apache24/conf/extra/httpd-ahssl.conf:209)
         port 443 namevhost app.4wrks.com (E:/web/apache/Apache24/conf/extra/httpd-ahssl.conf:222)
         port 443 namevhost colligit.domogear.com (E:/web/apache/Apache24/conf/extra/httpd-ahssl.conf:235)
         port 443 namevhost grafana.domogear.com (E:/web/apache/Apache24/conf/extra/httpd-ahssl.conf:248)

In my httpd.conf:

<Directory "E:/web/apache/Apache24/htdocs/">
  #Options Indexes MultiViews
  #AllowOverride None
  #Require all granted
		Options Indexes Includes FollowSymLinks
		AllowOverride AuthConfig Limit FileInfo
		Require all granted  
</Directory>
<VirtualHost devtest.domogear.com:80>
  ServerName devtest.domogear.com
  DocumentRoot "E:/web/apache/Apache24/htdocs/"
</VirtualHost> 
<VirtualHost colligit.domogear.com:80>
  ServerName colligit.domogear.com
  DocumentRoot "E:/web/apache/Apache24/htdocs/"
</VirtualHost> 
<VirtualHost grafana.domogear.com:80>
  ServerName grafana.domogear.com
  DocumentRoot "E:/web/apache/Apache24/htdocs/"
</VirtualHost> 
<VirtualHost rest.domogear.com:80>
  ServerName rest.domogear.com
  DocumentRoot "E:/web/apache/Apache24/htdocs/"
</VirtualHost> 
<VirtualHost web.domogear.com:80>
  ServerName web.domogear.com
  DocumentRoot "E:/web/apache/Apache24/htdocs/"
</VirtualHost> 
<VirtualHost app.4wrks.com:80>
  ServerName app.4wrks.com
  DocumentRoot "E:/web/apache/Apache24/htdocs/"
</VirtualHost> 
<VirtualHost grafana.4wrks.com:80>
  ServerName grafana.4wrks.com
  DocumentRoot "E:/web/apache/Apache24/htdocs/"
</VirtualHost>

.well-known is automatically created

rg305 · April 26, 2024, 5:07am

Open that .well-known folder.
There should be a folder inside it "acme-challenge".
If not, create it.

Then place a test text file [with no extension] inside that folder.

esseredigitale · April 26, 2024, 5:45am

I already said something wrong in my apache configuration

esseredigitale · April 26, 2024, 6:15am

I solved restarting all the machine!
Now I have problem with deploying PEM files:

What's wrong?
Thanks a lot, best regards

MikeMcQ · April 26, 2024, 2:08pm

I am not very familiar with that but the error says part of the path is missing.

I'm guessing you removed Certbot so you should make a new folder(s) for your certs. Then update Apache to use those new folders. There is no reason they need to be named certbot any more and probably best not so as to avoid confusion later. Especially when asking for help

esseredigitale · April 26, 2024, 8:59pm

Hi Mike,
I already tried to change the path, changing \ with /, but I got same error

rg305 · April 26, 2024, 9:22pm

The example shows a full path [including the exact filenames].
You only gave it the path:

esseredigitale · April 26, 2024, 9:28pm

I solved! "Filepath" description I supposed meaning only the path.
Thanks a lot, best regards

rg305 · April 26, 2024, 9:30pm

Glad to have helped

Cheers from Miami