Unauthorized Domain


#1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: dolgins.com & www.dolgins.com

I ran this command: sudo certbot --apache -d www.dolgins.com

It produced this output:

http-01 challenge for www.dolgins.com
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. www.dolgins.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.dolgins.com/.well-known/acme-challenge/NfwqQoCFci4BnFfowhQkFnFcYeqRoaZ4TzFGvOEwgCU: "

<meta http-equiv="X-"

IMPORTANT NOTES:

My web server is (include version): Apache 2

The operating system my web server runs on is (include version): Ubuntu 14

My hosting provider, if applicable, is: Digitalocean

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No, it is a rails site.

This same problem occurred here.


#2

http://www.dolgins.com/ is using Namecheap’s URL forwarding service. It breaks Let’s Encrypt validation.

You can disable the URL forwarding, create a regular A record with your IP (dolgins.com's IP is 107.170.21.128), and configure Apache to send a similar HTTP redirect.


#3

OK… awesome. wow thank you for the quick response. Any idea how I setup an apache2 redirect?


#4

I don’t usually use Apache, but it should be as simple as creating a virtual host that does:

ServerName www.dolgins.com
Redirect 301 / https://dolgins.com/

Edit: I made a mistake in my “simple” example. :smile:


#5

Cool. Thank you. This is very helpful.


#6

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.