Unauthorized invalid response from <domain>/.well-known/acme-challenge/etc

Says the config file /etc/nginx/nginx.conf syntax is ok and that the same file’s test is successful. Could the problem be that the old (albeit still maintained) OS is doing something that’s depreciated?

Will you please:

Please show “how” you reloaded.

Definitely no.

1 Like

I reloaded with $ sudo systemctl reload nginx

That is a throwback.
Let me see how we can get aound that (in version 1.10.3)

I think you might want to put a real/newer proxy in front of this system.
nginx is old and openssl is probably just as old too.

That said, I will still try to get you a cert for it…
Maybe with:
certbot run -a webroot -i nginx -w /etc/syslib -d morocotagold.gq

1 Like

I have to restore the previous change I made the config first, right? Because now the config says /ACMEchallenges/ instead of what I put.

If the running config is using /ACMEchallenges/ then:

  1. that folder needs to exist (nginx will NOT create it for you)
  2. change the command accordingly:
    certbot run -a webroot -i nginx -w /ACMEchallenges -d morocotagold.gq

The requested nginx plugin does not appear to be installed

Let me look up how to install what I guess is the Nginx plugin for LE.

certbot run -a webroot -i null -w /ACMEchallenges -d morocotagold.gq

If you are going to go down that road, then you might as well replace the entire certbot for an updated version.
Like with the snaps version (if your Ubuntu supports that)
swtich to certbot-auto
switch to acme.sh

Oops, ran this on the main server by mistake, but on the tablet it says /etc/syslib does not exist or is not a directory even though I see it clearly on the main server. Should I just use Snap? Edit: actually I already got the Certbot version I have with Snap.

Before installing snap version of certbot, please uninstall the current one:
sudo apt remove certbot
sudo apt-get remove certbot

[whichever you are familiar with]

Forgot to tell you that I already got Certbot on both the main server with BBB running Ubuntu Server 16.04.7 and on the tablet with TURN running 20.04.1 as it’s the default installation option on Certbot’s site and both Ubuntu versions came with Snap installed.


We are dealing with the 16.04 server now. (only).

What version of cerbot is on that now?

0.31.0. Adding more characters. Maybe this should be moved to a chat of some sort?

One of the main points of this forum is posterity.
Leaving a (searchable) history behind for those who may run into a similar problem in the future.

[albeit a slim chance at this point to find anyone still running nginx 1.10.3 - it is still worth it to me]

1 Like

0.31.0 should be good enough.
[presuming you just updated it]

Try our main approach first:
certbot run -a webroot -i nginx -w /ACMEchallenges -d morocotagold.gq

1 Like