This website is deprecated, and remains online only for historic access to old issues and docs for historic versions of Virtualmin. It has been unmaintained for several years, and should not be relied on for up-to-date information. Please visit www.virtualmin.com instead.

Unable to get Letsencrypt certificate for one virtual host

5 posts / 0 new

Topic locked

Last post

#1 Thu, 07/05/2018 - 21:38

palomnik

Unable to get Letsencrypt certificate for one virtual host

I have 4 virtual hosts on a virtualmin instance. I was able to use the web form to install certificates for 3 of them, but the 4th gives me the following errors:

Requesting a certificate for biz-on-ramp.com from Let's Encrypt .. .. request failed : Web-based validation failed : Saving debug log to /var/log/letsencrypt/letsencrypt.log Plugins selected: Authenticator webroot, Installer None Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org Obtaining a new certificate Performing the following challenges: http-01 challenge for biz-on-ramp.com Using the webroot path /home/biz-on-ramp/public_html for all unmatched domains. Waiting for verification... Cleaning up challenges Failed authorization procedure. biz-on-ramp.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://biz-on-ramp.com/.well-known/acme-challenge/6aZ4emgqjsQegfaxYTN_Tp... " 404 Not Found

Not Found

<

p" IMPORTANT NOTES: - The following errors were reported by the server:

Domain: biz-on-ramp.com Type: unauthorized Detail: Invalid response from http://biz-on-ramp.com/.well-known/acme-challenge/6aZ4emgqjsQegfaxYTN_Tp... " 404 Not Found

Not Found

<p"

To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. DNS-based validation failed : Saving debug log to /var/log/letsencrypt/letsencrypt.log Plugins selected: Authenticator manual, Installer None Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org Obtaining a new certificate Performing the following challenges: dns-01 challenge for biz-on-ramp.com Waiting for verification... Cleaning up challenges Failed authorization procedure. biz-on-ramp.com (dns-01): urn:acme:error:dns :: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.biz-on-ramp.com IMPORTANT NOTES: - The following errors were reported by the server:

Domain: biz-on-ramp.com Type: None Detail: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.biz-on-ramp.com

I have checked the DNS, and everything looks fine. What am I doing wrong?

#2 Thu, 07/05/2018 - 22:07

noisemarine

From the error there is some kind of permission problem. Is the web root for that site owned by the user? Do you have some kind of restriction in a .htaccess file somewhere, or in the config file?

#3 Fri, 07/06/2018 - 16:22

palomnik

I have tried removing the .htaccess, but there was no change. It is a multisite wordpress install.

#4 Thu, 08/23/2018 - 23:51

ksihota

Did you find a resolution to this problem?

#5 Fri, 08/24/2018 - 04:22

palomnik

I kept messing with settings, and it suddenly worked. I still am not sure why.

Topic locked