Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
Server shows: Server: Microsoft-IIS/7.0
The response above shows 403 which (to me) implies your system is requiring authentication/login.
My response shows 404 (not found).
curl -Iki http://remote.psr1.com/.well-known/acme-challenge/UiWECCMr3hXxXDCmgnw0mxh6crXba-I6lNgFdAXrmL8
HTTP/1.1 404 Not Found
Content-Length: 1245
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Mon, 07 Dec 2020 23:39:19 GMT
I would place a test text file in the expected challenge location to see if that file can indeed be served.
I think your domain is pointing to a different server to the one running win-acme, clearly if II7.0 is responding that's Server 2008, suggesting that you're perhaps trying to migrate to a new server and DNS hasn't been updated yet, so it's trying to do http validation against the old server.
cloudflare dns. www.psr1.com point to public business site email.psr1.com point to 173.163.87.165 port fowarded to ports 80 443 25 and other mail protocol
on 192.168.1.7 exchange server remote.psr1.com point to 173.163.87.162 port forward to ports 80 and 443 on 192.168.1.3 for windows essential services on windows server 2016 with IIS 10
i started to use the wacs.exe --test --verbose one the 2016 machine i added the mime . text/plain.
and still get the following
i did try this on the exchange machine but it was windows 2008 sp3 32bit with exchange 2010 and it killed the IIS i want to get it working on remote clean before i migrate exchange to 2016
[DBUG] Scanning IIS site bindings for hosts
[VERB] 1 named bindings found in IIS
[DBUG] Filtering by site(s) [1]
[VERB] 1 bindings remaining after site filter
[VERB] No host filter applied
[VERB] 1 matching binding found
[DBUG] Scanning IIS sites
[INFO] Target generated using plugin IIS: remote.psr1.com
Let's try placing a test text file in the expected challenge location.
Unless you have taken some other action, we can start from the document root for: http://remote.psr1.com/
in that local folder, you need to create a folder and then a sub-folder.
For this example, let's say the document root is: c:\folder1
you have to make a folder there: mkdir c:\folder1\.well-known
then another in the new one: mkdir c:\folder1\.well-known\acme-challenge
Now we are ready to create the test text file. echo "testing" > c:\folder1\.well-known\acme-challenge\test-file-1234
Please only change "folder1" to the actual web root path - leave the folders and file name as shown.
Let me know when that is done, so we can test access to it from the Internet.
http://remote.psr1.com/
in that local folder, you need to create a folder and then a sub-folder.
For this example, let's say the document root is: c:\folder1
you have to make a folder there:
mkdir C:\inetpub\wwwroot.well-known
then another in the new one:
mkdir C:\inetpub\wwwroot.well-known\acme-challenge
Now we are ready to create the test text file.
echo "testing" > C:\inetpub\wwwroot.well-known\acme-challenge\test-file-1234