While I am installing the renewal the ssl certificate its throwing unauthorised error

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: postfixadmin.aptagrim.co

I ran this command: certbot

It produced this output: Challenge failed for domain postfixadmin.aptagrim.co
http-01 challenge for postfixadmin.aptagrim.co
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:

My web server is (include version): ubuntu 20.

I can login to a root shell on my machine (yes or no, or I don't know): yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): 0.40.0

results of
sudo apachectl -t -D DUMP_VHOSTS
VirtualHost configuration:
*:443 aptagrim.co (/etc/apache2/sites-enabled/postfixadmin.aptagrim.co-le-ssl.conf:1)
*:80 aptagrim.co (/etc/apache2/sites-enabled/postfixadmin.aptagrim.co.conf:1)
*:8081 aptagrim.co (/etc/apache2/sites-enabled/postfixapi.conf:1)

thanks

Can you post the contents of this file? Please add 3 backticks before and after so we do not lose important tags like
```
contents of file
```

Also, your Certbot 0.40 is very old. With Ubuntu 20 you should be able to install the snap version to get to version 2.6. Just follow these instructions carefully

4 Likes

my postfixadmin.co.conf like

<VirtualHost *:80>

        DocumentRoot /var/www/postfixadmin/public
        ServerName aptagrim.co
        ServerAlias postfixadmin.aptagrim.co

        <Directory /var/www/postfixadmin/>
                Options FollowSymlinks
                AllowOverride All
                Require all granted
        </Directory>

        ErrorLog ${APACHE_LOG_DIR}/error.log
        CustomLog ${APACHE_LOG_DIR}/access.log combined
#ServerAlias mails.aptagrim.co
SSLCertificateFile /etc/letsencrypt/live/postfixadmin.aptagrim.co/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/postfixadmin.aptagrim.co/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf
</VirtualHost>
#</IfModule>

Isn't this thread a duplicate of:

5 Likes

Yes. Yes it is.

3 Likes

These 3 lines

Must be removed from this config file. Certs are not used in port 80 VirtualHosts

3 Likes

I closed the other one - this one has more info.
I think I'll merge those posts into this one.

Well that was more complicated than it should have been :frowning:

2 Likes

hello while iam renewing my ssl certificate its throwing this error, i had a certifiacte for my domain,


what could be the error ?

Your thread is more suitable for the Help section instead of the Issuance Tech category.

If you would have opened this thread in the Help section, you would have been provided with a questionnaire. Please fill out the questionnaire below to the best of your knowledge:


Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):


Also, please post the output of:

sudo apachectl -t -D DUMP_VHOSTS

3 Likes

Please note a new thread with more info was started here

3 Likes

Yeah :man_shrugging: And actually messier than it was before since I'd already noted better info existed here. Probably better if you'd just closed the original.

3 Likes

Just showing link to this past post as it is most current for this thread

3 Likes