Hi all. I'm trying to install a certificate.. And yet, I encounter this challenge failed error.
Checked the DNS, it points at my domain. Access the domain, via browser and it works.. I'm at a loss.. Could anyone give me a hand ?
Thank you.
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
My web server is (include version):
Apache/2.4.18
The operating system my web server runs on is (include version):
ubuntu 16.04.7
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
certbot 1.9.0
Thanks for taking the time to answer....
I have no idea who 81.12.177.74 is....
I will look into it.. as it seems weird....
5.2.151.201 is my external ip, and yes, I kow that both ns servers are identical.
Hi @Osiris
Thanks for replying.
apachectl -S actually gives me an error.... a syntax error, to be precise...
AH00526: Syntax error on line 44 of /etc/apache2/sites-enabled/000-apps.vhost:
SuexecUserGroup configured, but suEXEC is disabled: Invalid owner or file mode for /usr/lib/apache2/suexec
Action '-S' failed.
If that returns the same problem/error, then I guess you have to hunt that down - it would be an Apache configuration issue that may not be best resolved by this forum
It's kinda weird to have a virtualhost for your nameservers hostname ns1.medicalexpress.ro? Perhaps you don't have a ServerName set?
My advice would be to configure a separate VirtualHost in a separate file for your main site.
Another option would be to use the webroot authenticator.
which doesn't match the requested name: medicalexpress.ro
Although apache will serve some content regardless of an unmatched name, we are unable to see which document root would be served in this situation.
If that is all that was output, then we need to take a look at this file: /etc/apache2/sites-enabled/000-default.conf
To confirm the document root matches your --webroot command.
And to also review it to see why the apache installer failed to work.
The requested URL was not found on this server.
Apache/2.4.18 (Ubuntu) Server at medicalxpress.ro Port 80
when I try to access that page...
The file is there...
administrator@ns1:~ ls -all /var/www/html/.well-known/acme-challenge/
total 12
drwxr-xr-x 2 root root 4096 Nov 26 17:34 .
drwxr-xr-x 3 root root 4096 Nov 26 17:27 ..
-rw-r--r-- 1 root root 12 Nov 26 17:34 test-1234
as you can see...
And...
administrator@ns1:~ cat /var/www/html/.well-known/acme-challenge/test-1234
just a test
Please show the complete output of: apachectl -S
[you may have to use sudo]
If it is the same as posted above, then you may need to include this short name in the file: /etc/apache2/sites-enabled/000-default.conf
You can do this by adding a line after ServerName ns1.medicalexpress.ro
with: ServerAlias medicalxpress.ro
Then restart Apache and retest access to the test-1234 file.