SSL Request/Renew error

SYSTEM INFORMATION
OS type and version Ubuntu Linux 20.04.4
Virtualmin version 7.1-1 Pro

Hello everyone I’m currently trying to renew my SSL cert on my server. When I go to my server’s URL the SSL is working it says.

Then when I tack on myurl:port to log virtualmin I’m getting told the SSL has expired. When I go and try and renew it. I get this error

Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for myurl
Using the webroot path /var/www/myurl for all unmatched domains.
Waiting for verification...
Challenge failed for domain myurl
http-01 challenge for myurl
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
- The following errors were reported by the server:

Domain: myurl
Type: unauthorized
Detail: myip: Invalid response from
https://myurl.url/.well-known/acme-challenge/7xryiPXT2TK9K4wOQSGvyr-g3QzJeIQYSTVDlf_7rH4:
404

To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.

Does anyone know how I can fix it?
For security, I changed the URL and removed the IP

It is pretty much always one of two things:

  1. DNS is wrong. Are you sure every name you are trying to get a cert for (including aliases, including the automatically created ones) resolves to the IP of the server?
  2. Something is eating the request before it can be served from the filesystem. e.g. Proxy rules or redirects.

ok how do I fix that?

IF the DNS is wrong how do I fix that

Also, I’m currently not running proxy rules or any redirects

I just have apache running + virtualmin

Just check the A & www records are pointing correcty to VM ip.

Steve

but the SSL works on the main url.com but when I go to url.com:port the SSL no longer works

As far as I know if https://url.com works then https://url.com:10000/ should work as well, unless your using something like https://www.url.com:10000/ and www.url.com wasn’t listed a alternate name.

use mxtoolbox to check your dns’s are pointing correctly first.

Are you (maybe) using Cloudflare with Proxy enabled?

No not at all

It says my cert has expired

Fixed it it had to do with path

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.