I have successfully created certs with letsencrypt certbot-auto, but suddenly I just can’t do it…
I want to be able to create cert(s) and get the prepared on my disk. The bot can’t test against my server, because that is a separate machine all together, and I have not (yet) installed the certs there, nor can the bot do it while doing this. Therefore it has the options certonly --authenticator standalone right?
$sudo bin/certbot-auto certonly --authenticator standalone -d <domain.1> -d <domain.2> -d <domain.3>
Failed authorization procedure. <domain.1> (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Failed to connect to xxx.xxx.xxx.xxx:443 for TLS-SNI-01 challenge, <domain.2> (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Failed to connect to xxx.xxx.xxx.xx.25:443 for TLS-SNI-01 challenge, <domain.3> (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Failed to connect to xxx.xxx.xxx.xxx:443 for TLS-SNI-01 challenge
- I would want the certs to appear in /etc/letsencrypt but they do not.
- Why does the bot try to connect to the domain(s) in questions, as the cert does not exist yet?
The IP it tries to connect is not localhost, it tries to connect to internet service hosting those domains…