Fatal编程技术网
  • apache/
  • Apache certbot自动:客户端缺少足够的授权

Apache certbot自动:客户端缺少足够的授权

apache ssl nginx

Apache certbot自动:客户端缺少足够的授权,apache,ssl,nginx,ubuntu-14.04,certbot,Apache,Ssl,Nginx,Ubuntu 14.04,Certbot,我知道这个问题已经被问过好几次了,但我需要一些具体的帮助,因为我一直在听取其他几个线程的建议,到目前为止没有任何效果 我正在尝试使用certbot auto-renew更新Ubuntu 14.04中的SSL证书,我正在运行Apache2服务器和nginx。我得到了certbot自动续订的以下输出: root@PostgreSQLServer:/# sudo certbot-auto renew Saving debug log to /var/log/letsencrypt/letsen

我知道这个问题已经被问过好几次了,但我需要一些具体的帮助,因为我一直在听取其他几个线程的建议,到目前为止没有任何效果

我正在尝试使用
certbot auto-renew
更新Ubuntu 14.04中的SSL证书,我正在运行Apache2服务器和nginx。我得到了certbot自动续订的以下输出:

  root@PostgreSQLServer:/# sudo certbot-auto renew
  Saving debug log to /var/log/letsencrypt/letsencrypt.log

  -------------------------------------------------------------------------------
  Processing /etc/letsencrypt/renewal/my-domain.com.conf
  -------------------------------------------------------------------------------
  Cert is due for renewal, auto-renewing...
  Renewing an existing certificate
  Performing the following challenges:
  http-01 challenge for my-domain.com
  Waiting for verification...
  Cleaning up challenges
  Attempting to renew cert from /etc/letsencrypt/renewal/my-domain.com.conf produced an unexpected error: Failed authorization procedure. my-domain.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://my-domain.com/.well-known/acme-challenge/ailNmgZADpb4QBipKM57sOi9w3PwNkwBwVFiRYs7i40: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
  <html><head>
  <title>404 Not Found</title>
  </head><body>
  <h1>Not Found</h1>
  <p". Skipping.

  All renewal attempts failed. The following certs could not be renewed:
    /etc/letsencrypt/live/my-domain.com/fullchain.pem (failure)
  1 renew failure(s), 0 parse failure(s)

  IMPORTANT NOTES:
   - The following errors were reported by the server:

     Domain: my-domain.com
     Type:   unauthorized
     Detail: Invalid response from
     http://my-domain.com/.well-known/acme-challenge/ailNmgZADpb4QBipKM57sOi9w3PwNkwBwVFiRYs7i40:
     "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
     <html><head>
     <title>404 Not Found</title>
     </head><body>
     <h1>Not Found</h1>
     <p"

     To fix these errors, please make sure that your domain name was
     entered correctly and the DNS A record(s) for that domain
     contain(s) the right IP address.
您可以看到,升级后,进程开始失败,出现404消息

我已经尝试了所有我能在网上找到的建议,但我完全被难倒了,所以任何帮助都将不胜感激。提前谢谢

我必须编辑这个conf文件:
/etc/letsencrypt/renewal/offensively bad.com.conf
并修改下面的行
[[webroot\u map]]

[[webroot_map]]
offensively-bad.com = /path/to/what/certbot/thinks/is/the/correct/webroot/path/initially/specified/by/the/user
就我而言,我把它改成了

    offensively-bad.com = /var/www/offensively-bad.com/public_html/
感谢letsencrypt论坛的帮助。

我的问题是raspberry-pi-raspbian Stretch上的certbot版本太旧了:

certbot --version
给予

certbot 0.10.2

他做了一个诡计:

certbot 0.21.1

然后就

certbot——apache-d domain.com

希望这有帮助

certbot --version

apt-get install python-certbot-apache -t stretch-backports