When I try to use win-acme to renew my certificates, I've started to receive errors that are somehow 403 and 404 at the time (as if that makes any sense). The output below will show what I mean.
I find it strange that I'm not seeing the .well-known directories being made while win-acme is running. That said, I've never seen them made, but win-acme has always worked on every other server and even previously on this server. But now it's as if the .well-known data is not being created, and the request to locate those files fails.
win-acme said I should try Let's Debug, which told me I should try posting on this site. Thank you for helping me!
My domain is: account.lynnimaging.com (wildcard certificate for several other domains as well)
I ran this command: wacs.exe > Run 1 renewal (for wildcard domain)
It produced this output:
Renewing [IIS] (any site), (any host)
Cached order has status invalid, discarding
[account.lynnimaging.com] Authorizing...
[account.lynnimaging.com] Authorizing using http-01 validation (SelfHosting)
[account.lynnimaging.com] Authorization result: invalid
[account.lynnimaging.com] {
"type": "urn:ietf:params:acme:error:unauthorized",
"detail": "20.114.189.176: Invalid response from https://account.lynnimaging.com:443/.well-known/acme-challenge/n7iuhpocygban8ucn6qpa0i5bt8zactwavn2keiewz8: 404",
"status": 403
}
Renewal for [IIS] (any site), (any host) failed, will retry on next run
(Notice this output shows a 403 and 404 error somehow.)
My web server is (include version): IIS 10
The operating system my web server runs on is (include version): Windows Server 2019
My hosting provider, if applicable, is: None
I can login to a root shell on my machine (yes or no, or I don't know): Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is: win-acme 2.1.22.1267