Verification issue

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: lingsshop.ca

I ran this command:
during verification step, I press the text link,

It produced this output:
and then goes to the first page of website instead of the text file.

My web server is (include version):
Godaddy

The operating system my web server runs on is (include version):
windows professional

My hosting provider, if applicable, is:
Godaddy

I can login to a root shell on my machine (yes or no, or I don’t know):
yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
c panel

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
do not know this

Hi @daleyang

I don't understand your "verification step".

Checking your domain there are three certificates ( https://check-your-website.server-daten.de/?q=lingsshop.ca#ct-logs ):

Two Letsencrypt, both expired, one from GoDaddy.

Perhaps share a screenshot of that:

Hi, JuergenAuer,
for the Godaddy certificate, I do not know, I did not purchase it before.
for the two expired Let’s Encrypt, I try to get a new SSL cerficate, but cannot verify the text linkage after I copy the two text file to the specified directory, it will show the website first page automatically, and not the text file.

Thanks for helping!
let me know if there is an option that I can get the free SSL permanently, and no need to update every three months.
Thanks again

Dale

Ah, that's the missing information.

So you use ZeroSSL and the manual validation via http-challenge.

But checking your domain that can't work ( https://check-your-website.server-daten.de/?q=lingsshop.ca ):

There is a redirect /.well-known/acme-challenge/random-filename to your start page.

So Letsencrypt can't validate the file.

You have root access. So you should be able to install an own client.

Read

Then select a client, perhaps Certbot:

Then you don't need to validate your domain manual.

The info above is a little odd - you are using Godaddy, you are saying you have a "root shell" access, but the same time you have specified "Windows Pro" as the OS running on your server. I believe there might be some misunderstanding there, since Godaddy does have Windows hosting as far as I know, but that would be using Windows Server 2016. So perhaps Windows Pro and the "root shell" in your answers are related to your PC rather than the server you have. In which case you might not have sufficient access to install certbot, but might try some other clients indeed.

As for ZeroSSL step - as pointed out by @JuergenAuer above, you have a redirection set up, so verification files cannot be accessed. That explains why upon clicking on the link you are redirected to the home page of your site. Once you remove or alter that redirection, the process should work.

Hi,
You are right, they are the setup for my PC. I am not a IT personal, sorry for the confusion.
another question:
how to remove or alter the redirection? I am really no clue how to do it.

Thanks a lot

Dale

You use cPanel.

Looks like your redirect http -> https is wrong. The folder and file name is removed.

There should be an option to configure such a redirect. Perhaps share a screenshot.

2019-08-23 (4).png1920×1080 152 KB

please check if this is right?
or need to setup somewhere else in C panel.

Thanks

There is no redirect defined.

So you have the redirect on another place.

Perhaps in your software or .htaccess.

You have to find that redirect.

2019-08-23 (5).png1920×1080 91.8 KB

when I input the link manually in the browser, the text was displayed correctly.

2019-08-23 (6).png1920×1080 88.3 KB

when I click the linkage at the FREE SSL Certificate Wizard verification page, the first couple of seconds, the link shows right, and then goes to home page of my website directly.

if it is redirect issue, when I input the address in the browser, it should redirect to home page of the my website as well. Please correct me if I am wrong, thanks.

Create a test file in /.well-known/acme-challenge, file name 1234 with content, then try to load that file.

Perhaps it's a bot detection that creates that redirect.

Use the "check-your-website" tool to check the complete url

http://lingsshop.ca/.well-known/acme-challenge/1234

2019-08-241920×1080 86.5 KB

created 1234 file, it looks good.

The fatal part is highlighted.

Please help me to figure it out, I guess this issue will be a common issue for most of Godaddy customers in the near future.

Thanks

That's the old result, that's irrelevant. Results are saved, that's the yesterday - result.

The new is good: https://check-your-website.server-daten.de/?q=lingsshop.ca%2F.well-known%2Facme-challenge%2F1234

There is no redirect. Not the 1234, not the standard check. Instead, there is the expected result http status 404 - Not Found.

Looks like you have removed the redirect.

So try it again to create a certificate.

PS: No, one thing is curious. http + www + /.well-known/acme-challenge/random-filename is redirected to the non-www version.

But not the test file. That's curious.

It's possible there is a bot detection that checks some things. So if Letsencrypt tries to validate the file, it's redirected again.

If it doesn't work: Ask your hoster if there is such a bot detection.

Thanks for helping, I called Godaddy, it looks that the problem of redirecting was caused by Godaddy, they update it for TEXT file, I do not know what is exactly mean.
Now it is ok now.

2019-08-24 (9).png1920×1080 269 KB

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.