• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:

    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Resolved Let's encrypt does not renew any more

AmaZili Communication

Basic Pleskian
Hi,

We are using Plesk 12.5 on centos 7.. on our servers.
We use almost the same configuration with http/2 and nginx for better performance.
We use Let's encrypt as well with the plesk addon for months now.
Unfortunatly, two days ago one of the automated renew did not worked.

we then got the following error trying to renew it manually (changed the name of the domain for anonimity) :

Code:
Erreur: Échec de l'installation du certificat SSL Let's Encrypt : Failed letsencrypt execution: Failed authorization procedure. my.domain.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://my.domain.com/.well-known/acme-challenge/ouxIsAyuwrMQNl4jT3LdIm4oL6HlzCq_BEuGI1kuSi4: "<!DOCTYPE HTML> <!--[if lt IE 7]><html class="no-js lt-ie9 lt-ie8 lt-ie7" lang="fr-fr"><![endif]--> <!--[if IE 7]><html class="n", www.my.domain.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.my.domain.com/.well-known/acme-challenge/pm9TIYRanU-S9xNMxmSNmEWpcNZIRlpflwGbHIR_kII: "<!DOCTYPE HTML> <!--[if lt IE 7]><html class="no-js lt-ie9 lt-ie8 lt-ie7" lang="fr-fr"><![endif]--> <!--[if IE 7]><html class="n"
IMPORTANT NOTES:
- The following errors were reported by the server:

Domain: my.domain.com
Type: unauthorized
Detail: Invalid response from
http://my.domain.com/.well-known/acme-challenge/ouxIsAyuwrMQNl4jT3LdIm4oL6HlzCq_BEuGI1kuSi4:
"<!DOCTYPE HTML> <!--[if lt IE 7]><html class="no-js lt-ie9 lt-ie8
lt-ie7" lang="fr-fr"><![endif]--> <!--[if IE 7]><html class="n"

Domain: www.my.domain.com
Type: unauthorized
Detail: Invalid response from
http://www.my.domain.com/.well-known/acme-challenge/pm9TIYRanU-S9xNMxmSNmEWpcNZIRlpflwGbHIR_kII:
"<!DOCTYPE HTML> <!--[if lt IE 7]><html class="no-js lt-ie9 lt-ie8
lt-ie7" lang="fr-fr"><![endif]--> <!--[if IE 7]><html class="n"

To fix these errors, please make sure that your domain name was
entered correctly and the DNS A record(s) for that domain
contain(s) the right IP address.



urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http:// /.well-known/acme-challenge/

Please note that we did NO modification at all on this domain for months.

We then tried to create an LE certificate for another domain that was not using before, it worked perfectly

Then after, we went to another domain which LE certificate works fine and tried to renew it manually and failed with the same messages.

It seems something is going wrong recently (betweeen last renewal and the 9th of august) with LE support in plesk.

If this is the case, it will shoot A LOT of sites in our servers, and with may be with every LE/plesk customers.

Can someone help ?

Thanks
 
Hi,
As you may notice the extension was not updated since 2016-05-25.
Just in case, was something modified in server-wide settings.
Try to put the file manually and check it in your browser.
 
Hi Eugene,

if you exept automated plesk panel updates, nothing was changed on the server settings (it's running automated for months)

Can you explain :
Try to put the file manually and check it in your browser.

Thanks

Philippe
 
Back
Top