Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: navigationsports.com
I ran this command:
wincertes -s https://acme-v02.api.letsencrypt.org/directory -e erict@powersoft.ca -d navigationsports.com -b “NavigationSports” -w “c:\inetpub\wwwroot\navigationsports”
It produced this output:
Failed to register and validate order with CA: Could not validate challenge https://acme-v02.api.letsencrypt.org/acme/challenge/SsosCA7l-f_YVALld6Yj4CKvtkrgpwppiMYs4fPs87k/9048608666
Could not delete challenge file directory: The directory is not empty.
[The .well-known folder is not deleted, but it’s empty]
My web server is (include version):
IIS 10
The operating system my web server runs on is (include version):
Windows Server 2016 Datacenter
My hosting provider, if applicable, is:
Azure VM
I can login to a root shell on my machine (yes or no, or I don’t know):
yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
no
NOTE:
Using fiddler4, I could see the last message sent to the CA is:
GET /acme/challenge/SsosCA7l-f_YVALld6Yj4CKvtkrgpwppiMYs4fPs87k/9048608666
The response from the CA is:
{
“type”: “http-01”,
“status”: “invalid”,
“error”: {
“type”: “urn:ietf:params:acme:error:unauthorized”,
“detail”: “Invalid response from http://navigationsports.com/.well-known/acme-challenge/o6kxLtjRcoILbibrxCNwQADhd_8topCAoP81HFxDKq0 [13.71.189.202]: 500”,
“status”: 403
},
“url”: “https://acme-v02.api.letsencrypt.org/acme/challenge/SsosCA7l-f_YVALld6Yj4CKvtkrgpwppiMYs4fPs87k/9048608666”,
“token”: “o6kxLtjRcoILbibrxCNwQADhd_8topCAoP81HFxDKq0”,
“validationRecord”: [
{
“url”: “http://navigationsports.com/.well-known/acme-challenge/o6kxLtjRcoILbibrxCNwQADhd_8topCAoP81HFxDKq0”,
“hostname”: “navigationsports.com”,
“port”: “80”,
“addressesResolved”: [
“13.71.189.202”
],
“addressUsed”: “13.71.189.202”
}
]
}
I see the 500 and the 403 in the error section, but Fiddler does not report any statuses other than 200 OK. Please advise.