虽然我以前做过这个,但我不记得遇到过这个问题,所以我不明白我错过了什么步骤。
我正在尝试使用 certbot 为我的服务器创建 SSL 证书,但是,我在 acme_challenge 中遇到了失败。我遇到了“未授权”失败。问题是,我不知道如何在 DNS 中设置质询。当 certbot 运行时,我记得它会暂停并让你在 DNS 中设置质询,但这并没有发生。
它会将错误抛到显示挑战的终端窗口并表示挑战失败。输出如下。
root@systopian-web2:~# sudo certbot certonly --agree-tos --email [email protected] --webroot -w /var/lib/letsencrypt/ -d mydomain.tld -d www.mydomain.tld
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for mydomain.tld
http-01 challenge for www.mydomain.tld
Using the webroot path /var/lib/letsencrypt for all unmatched domains.
Waiting for verification...
Challenge failed for domain systopian.web2.tldm
Challenge failed for domain www.systopian-web2.tld
http-01 challenge for mydomain.tld
http-01 challenge for www.mydomain.tld
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: mydomain.tld
Type: unauthorized
Detail: Invalid response from
mydomain.tld/.well-known/acme-challenge/xylqef3u7PthzjE7f1cGIhdGwAMls0wWzvODkQwb_f4
[119.28.132.32]: "<html>\r\n<head><title>404 Not
Found</title></head>\r\n<body bgcolor=\"white\">\r\n<center><h1>404
Not Found</h1></center>\r\n<hr><center>"
Domain: www.mydomain.tld
Type: unauthorized
Detail: Invalid response from
/www.mydomain.tld/auth/login [45.77.154.240]: "<html
lang=\"\">\n <head>\n \n <meta charset=\"utf-8\">\n
<meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n <!--
Tel"
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.