Unauthorized Invalid response from

My domain is: www.integratedhealing.co.in

I ran this command: sudo certbot certonly --webroot -d www.integratedhealing.co.in

It produced this output:

My web server is (include version): Tomcat 8

The operating system my web server runs on is (include version): centos 7

My hosting provider, if applicable, is: A2Hosting

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): NO

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 1.11.0

Error:
Domain: www.integratedhealing.co.in
Type: unauthorized
Detail: Invalid response from http://www.integratedhealing.co.in/.well-known/acme-challenge/WbOSfptgGt1yWg0f_wrQdIWHTMuOSgRutFPcWE16ENk [185.148.129.7]: "

Whitelabel Error Page

This application has no explicit mapping for /error, so you are seeing this as a fa"

To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address.
2021-06-25 05:56:34,539:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File "/usr/lib/python2.7/site-packages/certbot/_internal/auth_handler.py", line 91, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python2.7/site-packages/certbot/_internal/auth_handler.py", line 180, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
AuthorizationError: Some challenges have failed.

Note:
Recently change my ip (Hostig provide).

Hi @sadanand and welcome to the LE community forum :slight_smile:

I must assume that command is missing the correct webroot OR Tomcat is playing some tricks.
[Did it prompt you to enter the webroot path?]

Yes.. I entered correct path also.
http-01 challenge for www.integratedhealing.co.in
Input the webroot for www.integratedhealing.co.in: (Enter 'c' to cancel): /opt/tomcat/webapps/ih
Waiting for verification...
Challenge failed for domain www.integratedhealing.co.in
http-01 challenge for www.integratedhealing.co.in
Cleaning up challenges
Some challenges have failed.

I did same for my other domain where i able to generate certificate ..
Is it because of i hosted 2 domains (website) in a tomcat server..?

Also i had certificate for www.integratedhealing.co.in with my old hosting service provider but recently i changed my hosting provider. And trying to generate new certificate.

Log for ref, this can help
2021-06-25 08:18:20,162:DEBUG:acme.client:Received response:
HTTP 200
content-length: 1255
cache-control: public, max-age=0, no-cache
strict-transport-security: max-age=604800
server: nginx
connection: keep-alive
link: https://acme-v02.api.letsencrypt.org/directory;rel="index"
boulder-requester: 128111556
date: Fri, 25 Jun 2021 12:18:20 GMT
x-frame-options: DENY
content-type: application/json
replay-nonce: 0104QNRlI5YmcN0DkJgSKFD8hWQcp3CKzaNZpddvPt_hHmY

{
"identifier": {
"type": "dns",
"value": "www.integratedhealing.co.in"
},
"status": "invalid",
** "expires": "2021-07-02T12:18:18Z",**
"challenges": [
{
"type": "http-01",
"status": "invalid",
"error": {
"type": "urn:ietf:params:acme:error:unauthorized",
"detail": "Invalid response from http://www.integratedhealing.co.in/.well-known/acme-challenge/ADxV8-bdBqm0-aohoke3D9o5_EPhXNLDTBNzS68oTUk [185.148.129.7]: "\u003chtml\u003e\u003cbody\u003e\u003ch1\u003eWhitelabel Error Page\u003c/h1\u003e\u003cp\u003eThis application has no explicit mapping for /error, so you are seeing this as a fa"",
"status": 403
},
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/14278191703/MJ8P9g",
"token": "ADxV8-bdBqm0-aohoke3D9o5_EPhXNLDTBNzS68oTUk",
"validationRecord": [
{
"url": "http://www.integratedhealing.co.in/.well-known/acme-challenge/ADxV8-bdBqm0-aohoke3D9o5_EPhXNLDTBNzS68oTUk",
"hostname": "www.integratedhealing.co.in",
"port": "80",
"addressesResolved": [
"185.148.129.7"
],
"addressUsed": "185.148.129.7"
}
],
"validated": "2021-06-25T12:18:19Z"
}
]
}

Try placing a test text file in that folder and see if it can be reached directly from the Internet.

Hi, Thank you. Need another help..
Now I am able to download certificate by certbot certonly --manual --preferred-challenges=dns -d www.integratedhealing.co.in

Now i have two certificate for my two different domain hosted in tomcat server. Getting error NET::ERR_CERT_COMMON_NAME_INVALID.

Is there any way to configure certificate basis on domain in tomcat server.xml or should i create one certificate for my two domain.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.