Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # certbot certonly --nginx --dry-run -d kacper.grzybnia.de -vv
- Root logging level set at 10
- Saving debug log to /var/log/letsencrypt/letsencrypt.log
- Requested authenticator nginx and installer nginx
- Single candidate plugin: * nginx
- Description: Nginx Web Server plugin
- Interfaces: Installer, Authenticator, Plugin
- Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
- Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7efcfc9b03c8>
- Prep: True
- Single candidate plugin: * nginx
- Description: Nginx Web Server plugin
- Interfaces: Installer, Authenticator, Plugin
- Entry point: nginx = certbot_nginx._internal.configurator:NginxConfigurator
- Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7efcfc9b03c8>
- Prep: True
- Selected authenticator <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7efcfc9b03c8> and installer <certbot_nginx._internal.configurator.NginxConfigurator object at 0x7efcfc9b03c8>
- Plugins selected: Authenticator nginx, Installer nginx
- Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-staging-v02.api.letsencrypt.org/acme/acct/58463854', new_authzr_uri=None, terms_of_service=None), 83ceed3dc69a1602bfdf63a686f341b2, Meta(creation_dt=datetime.datetime(2022, 6, 23, 20, 22, 54, tzinfo=<UTC>), creation_host='grzybnia', register_to_eff=None))>
- Sending GET request to https://acme-staging-v02.api.letsencrypt.org/directory.
- Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org:443
- https://acme-staging-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 822
- Received response:
- HTTP 200
- Server: nginx
- Date: Fri, 24 Jun 2022 06:24:06 GMT
- Content-Type: application/json
- Content-Length: 822
- Connection: keep-alive
- Cache-Control: public, max-age=0, no-cache
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "keyChange": "https://acme-staging-v02.api.letsencrypt.org/acme/key-change",
- "meta": {
- "caaIdentities": [
- "letsencrypt.org"
- ],
- "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
- "website": "https://letsencrypt.org/docs/staging-environment/"
- },
- "mpCWeUEJXEI": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
- "newAccount": "https://acme-staging-v02.api.letsencrypt.org/acme/new-acct",
- "newNonce": "https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce",
- "newOrder": "https://acme-staging-v02.api.letsencrypt.org/acme/new-order",
- "renewalInfo": "https://acme-staging-v02.api.letsencrypt.org/get/draft-aaron-ari/renewalInfo/",
- "revokeCert": "https://acme-staging-v02.api.letsencrypt.org/acme/revoke-cert"
- }
- Notifying user: Simulating a certificate request for kacper.grzybnia.de
- Simulating a certificate request for kacper.grzybnia.de
- Requesting fresh nonce
- Sending HEAD request to https://acme-staging-v02.api.letsencrypt.org/acme/new-nonce.
- https://acme-staging-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
- Received response:
- HTTP 200
- Server: nginx
- Date: Fri, 24 Jun 2022 06:24:07 GMT
- Connection: keep-alive
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 0001WcPmimOs4v8sHI8C1_jYyUeg_VIELo6vLI2r4AKXrF4
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Storing nonce: 0001WcPmimOs4v8sHI8C1_jYyUeg_VIELo6vLI2r4AKXrF4
- JWS payload:
- b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "kacper.grzybnia.de"\n }\n ]\n}'
- Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/new-order:
- {
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC81ODQ2Mzg1NCIsICJub25jZSI6ICIwMDAxV2NQbWltT3M0djhzSEk4QzFfall5VWVnX1ZJRUxvNnZMSTJyNEFLWHJGNCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ",
- "signature": "fE_qKH5dYKbdwf6k9YVnoYfukCw5W9Hg4i5XauAFn4G_UtL-e9lVmsBlmSXvS2RnWefj_nz2dXXMxdb85V_lWe3fNYb0PHRMymZvkr42thMPFh-k0MlRFP02vn8-ecCQOqEhaGHTBzIXfGfDg0RI22kPOi6jtizSrLIvF9nvFDv6fxxcajMv8VMnToCRoNQzaoIk-neuMu7LNE63zO7g4NEv0-G2xwH-S9i3KUFx-_KhN80Oc_AObqgrnkabzCmVDgILSaikqJmhKpGs1CMqt2jLX2dH8n5nmBS67gBJiuUr7Lkdj0Tq0M7iXbWRwfXKCaYJfGgd7YZzFCgO_2xSGg",
- "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogImthY3Blci5ncnp5Ym5pYS5kZSIKICAgIH0KICBdCn0"
- }
- https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 354
- Received response:
- HTTP 201
- Server: nginx
- Date: Fri, 24 Jun 2022 06:24:07 GMT
- Content-Type: application/json
- Content-Length: 354
- Connection: keep-alive
- Boulder-Requester: 58463854
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
- Location: https://acme-staging-v02.api.letsencrypt.org/acme/order/58463854/2934003574
- Replay-Nonce: 00021ijw6i9Dq-cyTSrwjzuNKaArt8rRRCbnodC4_GzTEwg
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "status": "pending",
- "expires": "2022-07-01T06:24:07Z",
- "identifiers": [
- {
- "type": "dns",
- "value": "kacper.grzybnia.de"
- }
- ],
- "authorizations": [
- "https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/2797495724"
- ],
- "finalize": "https://acme-staging-v02.api.letsencrypt.org/acme/finalize/58463854/2934003574"
- }
- Storing nonce: 00021ijw6i9Dq-cyTSrwjzuNKaArt8rRRCbnodC4_GzTEwg
- JWS payload:
- b''
- Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/2797495724:
- {
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC81ODQ2Mzg1NCIsICJub25jZSI6ICIwMDAyMWlqdzZpOURxLWN5VFNyd2p6dU5LYUFydDhyUlJDYm5vZEM0X0d6VEV3ZyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yNzk3NDk1NzI0In0",
- "signature": "f38F-xIK--KVCfGLwqdSOTxjqeNUqioXjS4Jrq2SrHXJZC-oSAcsiCWc9vOZYDoslWrJihWbCw3IcNR6Er14HiK6ChBkUA0yx8gtTTFu9ESlMmMGwGOCmDtQ7BzFf9vV3v8Ea8CjDjrl26c38wJEz7cWBFOdAwKnHW7yhkML6DvZ78VKe5--weAmtutsENcZVnT-Ny2NoXWry6opqQqHkzgK4JR9cjt-wXotbJZHlspHttELv92BI1OyhZZnJJCJfBAJJrctIs3wWIGZHoR_5-h_i3NP8FOg1hXl8_tNZMZSElhjl29b9JM72gREIOdNrOrzqXvYYzK3T8a2omsFrg",
- "payload": ""
- }
- https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/2797495724 HTTP/1.1" 200 820
- Received response:
- HTTP 200
- Server: nginx
- Date: Fri, 24 Jun 2022 06:24:07 GMT
- Content-Type: application/json
- Content-Length: 820
- Connection: keep-alive
- Boulder-Requester: 58463854
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 0002n0zKrj-uj7sh5asqOW_LurwO74TscDE30udVFizXgOo
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "identifier": {
- "type": "dns",
- "value": "kacper.grzybnia.de"
- },
- "status": "pending",
- "expires": "2022-07-01T06:24:07Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/2797495724/_ILFzg",
- "token": "t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw"
- },
- {
- "type": "dns-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/2797495724/ZGtMUw",
- "token": "t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw"
- },
- {
- "type": "tls-alpn-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/2797495724/GLc0Cg",
- "token": "t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw"
- }
- ]
- }
- Storing nonce: 0002n0zKrj-uj7sh5asqOW_LurwO74TscDE30udVFizXgOo
- Performing the following challenges:
- http-01 challenge for kacper.grzybnia.de
- Generated server block:
- []
- Creating backup of /etc/nginx/modules-enabled/50-mod-stream.conf
- Creating backup of /etc/nginx/sites-enabled/kacper.grzybnia.de
- Creating backup of /etc/nginx/modules-enabled/50-mod-http-echo.conf
- Creating backup of /etc/letsencrypt/options-ssl-nginx.conf
- Creating backup of /etc/nginx/sites-enabled/pihole.grzybnia.de
- Creating backup of /etc/nginx/modules-enabled/50-mod-http-image-filter.conf
- Creating backup of /etc/nginx/modules-enabled/50-mod-http-upstream-fair.conf
- Creating backup of /etc/nginx/modules-enabled/50-mod-http-auth-pam.conf
- Creating backup of /etc/nginx/modules-enabled/50-mod-http-geoip.conf
- Creating backup of /etc/nginx/modules-enabled/50-mod-mail.conf
- Creating backup of /etc/nginx/nginx.conf
- Creating backup of /etc/nginx/modules-enabled/50-mod-http-dav-ext.conf
- Creating backup of /etc/nginx/modules-enabled/50-mod-http-xslt-filter.conf
- Creating backup of /etc/nginx/mime.types
- Creating backup of /etc/nginx/modules-enabled/50-mod-http-subs-filter.conf
- Creating backup of /etc/nginx/sites-enabled/grzybnia.de
- Writing nginx conf tree to /etc/nginx/nginx.conf:
- user www-data;
- worker_processes auto;
- pid /run/nginx.pid;
- include /etc/nginx/modules-enabled/*.conf;
- events {
- worker_connections 768;
- # multi_accept on;
- }
- http {
- server_names_hash_bucket_size 128;
- include /etc/letsencrypt/le_http_01_cert_challenge.conf;
- ##
- # Basic Settings
- ##
- sendfile on;
- tcp_nopush on;
- tcp_nodelay on;
- keepalive_timeout 65;
- types_hash_max_size 2048;
- # server_tokens off;
- # server_names_hash_bucket_size 64;
- # server_name_in_redirect off;
- include /etc/nginx/mime.types;
- default_type application/octet-stream;
- ##
- # SSL Settings
- ##
- ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
- ssl_prefer_server_ciphers on;
- ##
- # Logging Settings
- ##
- access_log /var/log/nginx/access.log;
- error_log /var/log/nginx/error.log;
- ##
- # Gzip Settings
- ##
- gzip on;
- # gzip_vary on;
- # gzip_proxied any;
- # gzip_comp_level 6;
- # gzip_buffers 16 8k;
- # gzip_http_version 1.1;
- # gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
- ##
- # Virtual Host Configs
- ##
- include /etc/nginx/conf.d/*.conf;
- include /etc/nginx/sites-enabled/*;
- }
- #mail {
- # # See sample authentication script at:
- # # http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
- #
- # # auth_http localhost/auth.php;
- # # pop3_capabilities "TOP" "USER";
- # # imap_capabilities "IMAP4rev1" "UIDPLUS";
- #
- # server {
- # listen localhost:110;
- # protocol pop3;
- # proxy on;
- # }
- #
- # server {
- # listen localhost:143;
- # protocol imap;
- # proxy on;
- # }
- #}
- stream {
- include /etc/nginx/streams/*;
- }
- Writing nginx conf tree to /etc/nginx/sites-enabled/kacper.grzybnia.de:
- server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
- server_name kacper.grzybnia.de;
- root /var/www/html/kacper.grzybnia.de;
- autoindex off;
- index index.html;
- location / {
- expires max;
- try_files $uri $uri/ =404;
- }
- location = /.well-known/acme-challenge/t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw{default_type text/plain;return 200 t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw.DXEbgZoyFzw9hp3Oe0rcmzS5iB-cV3QtrsBvIC5QVI8;} # managed by Certbot
- }
- JWS payload:
- b'{}'
- Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/2797495724/_ILFzg:
- {
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC81ODQ2Mzg1NCIsICJub25jZSI6ICIwMDAybjB6S3JqLXVqN3NoNWFzcU9XX0x1cndPNzRUc2NERTMwdWRWRml6WGdPbyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9jaGFsbC12My8yNzk3NDk1NzI0L19JTEZ6ZyJ9",
- "signature": "e1zrcgu3h6Tw7QCDHEnZgbRskmuKuRSIaip1FY1lDylvTvUZ8fSCY6COwQH7trDVag0lNFhfiGu9-28eZtQ4vRaudSJSlKPIRUqfuJKPmDqq-kuHyCmkDNeQaZF1trLklr8UEyK8xJIwIlVJe5nymJs5jOY-ckVwRr9I6nehO2zx0tfjtqJ7MH03DobDbLAEmXJpHnTnAEfj57F9BhBEGYFxH0whvTXlqcj8MvSnlBjLUQDbyYEAcNB-WLxpYRF67b5zoiB3V2cpF5JiaI29cZFGed1ieeRPKkZbDWPLCgEPBb0JQKNGuNFX6Fl7kBPp2wkANs_-isIwwBF4b99j-Q",
- "payload": "e30"
- }
- https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/2797495724/_ILFzg HTTP/1.1" 200 193
- Received response:
- HTTP 200
- Server: nginx
- Date: Fri, 24 Jun 2022 06:24:08 GMT
- Content-Type: application/json
- Content-Length: 193
- Connection: keep-alive
- Boulder-Requester: 58463854
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/2797495724>;rel="up"
- Location: https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/2797495724/_ILFzg
- Replay-Nonce: 0001Ntk2Cc4jC1pV-iuyHyBViSiZ_UYCY9t-hKMGT-68IwM
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "type": "http-01",
- "status": "pending",
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/2797495724/_ILFzg",
- "token": "t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw"
- }
- Storing nonce: 0001Ntk2Cc4jC1pV-iuyHyBViSiZ_UYCY9t-hKMGT-68IwM
- Waiting for verification...
- JWS payload:
- b''
- Sending POST request to https://acme-staging-v02.api.letsencrypt.org/acme/authz-v3/2797495724:
- {
- "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS1zdGFnaW5nLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC81ODQ2Mzg1NCIsICJub25jZSI6ICIwMDAxTnRrMkNjNGpDMXBWLWl1eUh5QlZpU2laX1VZQ1k5dC1oS01HVC02OEl3TSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXN0YWdpbmctdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My8yNzk3NDk1NzI0In0",
- "signature": "IWdPWcQEAbijlk2AnGtpbk3q2AXXHrCuPX-bzstmd4lYFz9FndIADjdNs0EeeOh5E9bvxMUnj8YtztB2F7y5lAuLTg6EtVqh_ATAz1QLVaEUGorN7MoX5eqLPeOLgA3wWwUsZGPPRMzH4xEFiqfCSFAfsbbuDgQD4Nzf3E0Lw0Gs-FVfD7wRtU11EExTArOiDytuOHZSkRUo9vlGYzUYIMw0_SAnVSi0dfAshC8rq9Ddwt0SfOwAeYM_aVsnGfsxOz1-zFb-haPbjjXnbEuW2LGexThvgyRAkbDSyCIrnpDHlFulso-5Uc--O1opsUivHlUSxxK_QnqZDINweZiwuw",
- "payload": ""
- }
- https://acme-staging-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/2797495724 HTTP/1.1" 200 1102
- Received response:
- HTTP 200
- Server: nginx
- Date: Fri, 24 Jun 2022 06:24:09 GMT
- Content-Type: application/json
- Content-Length: 1102
- Connection: keep-alive
- Boulder-Requester: 58463854
- Cache-Control: public, max-age=0, no-cache
- Link: <https://acme-staging-v02.api.letsencrypt.org/directory>;rel="index"
- Replay-Nonce: 0002kXxcxAGq7UulpzSHofNpPY4hmQNkLFo_5QSQC_p7um4
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- {
- "identifier": {
- "type": "dns",
- "value": "kacper.grzybnia.de"
- },
- "status": "invalid",
- "expires": "2022-07-01T06:24:07Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "invalid",
- "error": {
- "type": "urn:ietf:params:acme:error:unauthorized",
- "detail": "2a01:4f8:d0:3919::68b3: Invalid response from http://kacper.grzybnia.de/.well-known/acme-challenge/t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw: 404",
- "status": 403
- },
- "url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/2797495724/_ILFzg",
- "token": "t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw",
- "validationRecord": [
- {
- "url": "http://kacper.grzybnia.de/.well-known/acme-challenge/t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw",
- "hostname": "kacper.grzybnia.de",
- "port": "80",
- "addressesResolved": [
- "194.35.12.231",
- "2a01:4f8:d0:3919::68b3"
- ],
- "addressUsed": "2a01:4f8:d0:3919::68b3"
- }
- ],
- "validated": "2022-06-24T06:24:08Z"
- }
- ]
- }
- Storing nonce: 0002kXxcxAGq7UulpzSHofNpPY4hmQNkLFo_5QSQC_p7um4
- Challenge failed for domain kacper.grzybnia.de
- http-01 challenge for kacper.grzybnia.de
- Notifying user:
- Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
- Domain: kacper.grzybnia.de
- Type: unauthorized
- Detail: 2a01:4f8:d0:3919::68b3: Invalid response from http://kacper.grzybnia.de/.well-known/acme-challenge/t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw: 404
- Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.
- Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
- Domain: kacper.grzybnia.de
- Type: unauthorized
- Detail: 2a01:4f8:d0:3919::68b3: Invalid response from http://kacper.grzybnia.de/.well-known/acme-challenge/t3YHQRxs5R5jJwTpE_b12ZU-klJntcpKujCKx_15Nyw: 404
- Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.
- Encountered exception:
- Traceback (most recent call last):
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 106, in handle_authorizations
- self._poll_authorizations(authzrs, max_retries, best_effort)
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 206, in _poll_authorizations
- raise errors.AuthorizationError('Some challenges have failed.')
- certbot.errors.AuthorizationError: Some challenges have failed.
- Calling registered functions
- Cleaning up challenges
- Exiting abnormally:
- Traceback (most recent call last):
- File "/usr/bin/certbot", line 8, in <module>
- sys.exit(main())
- File "/opt/certbot/lib/python3.7/site-packages/certbot/main.py", line 19, in main
- return internal_main.main(cli_args)
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 1744, in main
- return config.func(config, plugins)
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 1591, in certonly
- lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/main.py", line 141, in _get_and_save_cert
- lineage = le_client.obtain_and_enroll_certificate(domains, certname)
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/client.py", line 513, in obtain_and_enroll_certificate
- cert, chain, key, _ = self.obtain_certificate(domains)
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/client.py", line 441, in obtain_certificate
- orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/client.py", line 493, in _get_order_and_authorizations
- authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 106, in handle_authorizations
- self._poll_authorizations(authzrs, max_retries, best_effort)
- File "/opt/certbot/lib/python3.7/site-packages/certbot/_internal/auth_handler.py", line 206, in _poll_authorizations
- raise errors.AuthorizationError('Some challenges have failed.')
- certbot.errors.AuthorizationError: Some challenges have failed.
- Some challenges have failed.
- Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement