Hallo zusammen,
nachdem meine nextcloud nun lĂ€uft (lokal kann ich ĂŒber 192.168.XXX.XXX, sowie extern ĂŒber meine_domain.myfritz.net darauf zugreifen), möchte ich den SSLZugang einrichten.
HierfĂŒr habe ich certbot verwendet, erhalte nur leider immer wieder eine Fehlermeldung.
Ich habe dietpi-letsencrypt im Terminal gestartet und folgende Parameter eingegeben:
domain = meine_domain.myfritz.net
email: nextcloud@YYY.de
Redirect = ON
HSTS = OFF
Key Size = 4096 bits
Nachdem Letsencrypt scheinbar gut anlÀuft kommt dann eine Fehlermeldung:
[Failure] CertBot failed with error code (1), please check its terminal output. AbortingâŠ
Unter /var/log/letsencrypt/letsencrypt.log finde sich folgende Infos:
2020-04-13 18:39:29,808:DEBUG:certbot.main:certbot version: 0.31.0
2020-04-13 18:39:29,809:DEBUG:certbot.main:Arguments: [ââwebrootâ, â-wâ, â/var/wwwâ, ââagree-tosâ, ââno-eff-emailâ, âârsa-key-sizeâ, â4096â, â-mâ, ânextcloud@YYY.deâ, â-dâ, âmeine_domain.myfritz.netâ]
2020-04-13 18:39:29,811:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2020-04-13 18:39:29,836:DEBUG:certbot.log:Root logging level set at 20
2020-04-13 18:39:29,836:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2020-04-13 18:39:29,845:DEBUG:certbot.plugins.selection:Requested authenticator webroot and installer None
2020-04-13 18:39:29,846:DEBUG:certbot.plugins.selection:Single candidate plugin: * webroot
Description: Place files in webroot directory
Interfaces: IAuthenticator, IPlugin
Entry point: webroot = certbot.plugins.webroot:Authenticator
Initialized: <certbot.plugins.webroot.Authenticator object at 0xb5449cb0>
Prep: True
2020-04-13 18:39:29,846:DEBUG:certbot.plugins.selection:Selected authenticator <certbot.plugins.webroot.Authenticator object at 0xb5449cb0> and installer None
2020-04-13 18:39:29,847:INFO:certbot.plugins.selection:Plugins selected: Authenticator webroot, Installer None
2020-04-13 18:39:29,871:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri=âhttps://acme-v02.api.letsencrypt.org/acme/acct/83289978â, new_authzr_uri=None, terms_of_service=None), 150879601e2e6a38c28732e492de8145, Meta(creation_dt=datetime.datetime(2020, 4, 13, 12, 12, 24, tzinfo=), creation_host=âDietPiâ))>
2020-04-13 18:39:29,872:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2020-04-13 18:39:29,880:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2020-04-13 18:39:30,572:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 âGET /directory HTTP/1.1â 200 658
2020-04-13 18:39:30,573:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 13 Apr 2020 16:39:30 GMT
Content-Type: application/json
Content-Length: 658
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
âW9Xl_NcwOWoâ: âAdding random entries to the directory - API Announcements - Let's Encrypt Community Supportâ,
âkeyChangeâ: âhttps://acme-v02.api.letsencrypt.org/acme/key-changeâ,
âmetaâ: {
âcaaIdentitiesâ: [
âletsencrypt.orgâ
],
âtermsOfServiceâ: âhttps://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdfâ,
âwebsiteâ: âhttps://letsencrypt.orgâ
},
ânewAccountâ: âhttps://acme-v02.api.letsencrypt.org/acme/new-acctâ,
ânewNonceâ: âhttps://acme-v02.api.letsencrypt.org/acme/new-nonceâ,
ânewOrderâ: âhttps://acme-v02.api.letsencrypt.org/acme/new-orderâ,
ârevokeCertâ: âhttps://acme-v02.api.letsencrypt.org/acme/revoke-certâ
}
2020-04-13 18:39:30,577:INFO:certbot.main:Obtaining a new certificate
2020-04-13 18:39:44,945:DEBUG:certbot.crypto_util:Generating key (4096 bits): /etc/letsencrypt/keys/0007_key-certbot.pem
2020-04-13 18:39:44,997:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0007_csr-certbot.pem
2020-04-13 18:39:44,999:DEBUG:acme.client:Requesting fresh nonce
2020-04-13 18:39:44,999:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2020-04-13 18:39:45,165:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 âHEAD /acme/new-nonce HTTP/1.1â 200 0
2020-04-13 18:39:45,166:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 13 Apr 2020 16:39:45 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel=âindexâ
Replay-Nonce: 0001DSnDa8UITMoVCNYp8upwwRGzPJVPcXBSzF4a-Ovy_dA
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
2020-04-13 18:39:45,166:DEBUG:acme.client:Storing nonce: 0001DSnDa8UITMoVCNYp8upwwRGzPJVPcXBSzF4a-Ovy_dA
2020-04-13 18:39:45,167:DEBUG:acme.client:JWS payload:
bâ{\n âidentifiersâ: [\n {\n âtypeâ: âdnsâ,\n âvalueâ: âmeine_domain.myfritz.netâ\n }\n ]\n}â
2020-04-13 18:39:45,210:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
âprotectedâ: âeyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvODMyODk5NzgiLCAibm9uY2UiOiAiMDAwMURTbkRhOFVJVE1vVkNOWXA4dXB3d1JHelBKVlBjWEJTekY0YS1PdnlfZEEiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9â,
âsignatureâ: âLsXWKZLZY2BC6ttjn3NMhXd8AvrgOU0h5-oov71BJ3uT0uxVb7ZZyYFe1WiJAb6j3JOd9KakeVvejYNynQI69kHbVn1rTNFlf_PIPV56SQBOkrOQQzPEGBcWzC4jB-SmjLwGlPPaMcHD9fDc-3cOhOlPfnqXFLN3hJBQu8fViZyiLvV5jtBeSkB2EKVyo_F3p_n3Y91dgyc4VkTsQymeIeyqvryopTjeAY5AJIrdRiFbJzrVLwXJJMyps7o7_M7Nhl71k-BnfghnOjBIkWftVsqjFf3yFBE8BkSxUfB1PTJgJFz75R90DV4URcLIOG6b56gvYhcvtWMaDrUsWoaQhAEnPqJ68OhVkdWYsIhqSQMssgz99GSWxxVZ9iO4uD2oUgbtId8DNIxHgi_tvWLhwGACpHtv7l1YdQbjmeAMjlz0ZXCr0CnBRGhiRoemL3lyZNFKpU_7E1VmxxvLzz_tiul1KKjRRiCRqSAOrR0go_s07xUeJ_o1x_j-SPljRGWsP1z4vVGEcGP5AMzMMuC3AElOespFeBP2snKOi2IuMH_a9Bl5as2A6lm7-JdZZUm8ZmOylbmkxFQVhk0wVi2Bmos576m26wINcKR0aTw8GHdI9hZUGDW60Wk26XeDBe1JxUtM2SOilh8KJK8P6-O5Pr_b-ebg_ZhnMaXgJOn-0IEâ,
âpayloadâ: âewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInFremVodmF4azk0YmxobnEubXlmcml0ei5uZXQiCiAgICB9CiAgXQp9â
}
2020-04-13 18:39:45,408:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 âPOST /acme/new-order HTTP/1.1â 201 357
2020-04-13 18:39:45,409:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Mon, 13 Apr 2020 16:39:45 GMT
Content-Type: application/json
Content-Length: 357
Connection: keep-alive
Boulder-Requester: 83289978
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel=âindexâ
Location: https://acme-v02.api.letsencrypt.org/acme/order/83289978/2989270905
Replay-Nonce: 0002Bs3SmmRCAqldwy_l9ETT1GPXw9D4OiP3BXMDQcL5vjA
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
âstatusâ: âpendingâ,
âexpiresâ: â2020-04-20T16:39:45.31439377Zâ,
âidentifiersâ: [
{
âtypeâ: âdnsâ,
âvalueâ: âmeine_domain.myfritz.netâ
}
],
âauthorizationsâ: [
âhttps://acme-v02.api.letsencrypt.org/acme/authz-v3/3938284668â
],
âfinalizeâ: âhttps://acme-v02.api.letsencrypt.org/acme/finalize/83289978/2989270905â
}
2020-04-13 18:39:45,409:DEBUG:acme.client:Storing nonce: 0002Bs3SmmRCAqldwy_l9ETT1GPXw9D4OiP3BXMDQcL5vjA
2020-04-13 18:39:45,410:DEBUG:acme.client:JWS payload:
bââ
2020-04-13 18:39:45,453:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/3938284668:
{
âprotectedâ: âeyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvODMyODk5NzgiLCAibm9uY2UiOiAiMDAwMkJzM1NtbVJDQXFsZHd5X2w5RVRUMUdQWHc5RDRPaVAzQlhNRFFjTDV2akEiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzM5MzgyODQ2NjgifQâ,
âsignatureâ: âDVvgBJfHWorvY9ivmtvt05YxguzYyh0jd3fZ6NV00DzDpNhkaoG8b8CFQBCnzs2N_nhsbS8MfS3-DeZy5NZjzZFfISofijUw8eBVyCLx3wqEJK1cdh3xUkDRNCrAy1dsxYtpLwOKT8iovX4iA8PNPVsfOjOAzwgDZwKmdUCfPzQIUWSFhvUsD-OUcNZNztJYv5_jGwHA6NTcoybttQETIhOU_qTaWYJJGYZJ7iZrU9e5YheqMHqgmlVthDz_9dJFYhn0BP_F0j8v0K1U3jSd8WggxaawaBKw8DXA4NiiTwSwggGdv9AuQEgkUQcnO9wGwTw9wI0ExLbzCNpZy5upngaewFZxQTC3kiAuVO3buRHghjsacPRaUb194BKhCKJXCxPk7KYbMTA2FdwVdidVXev60hTs_cXAldQlEieS7RQgpHFJSmJwE5O3KCYSepdRPHPrL0rZGb8GGui4bINv3gu1vOuOfMnlwHgkxrzNtTPk08bojBom8ZRzCo_FMi8M6jGMkv6CDPf5QHJwCQw1cKXFgFIpiXJqKNwXdMW2B5X89POuWzsxAz4TYxGmzCSEH1xyZ6NfofdQDVpxUbG9Vueds7jFfldz5UnUHai2aE8yXCsIC-2yz9neAatk-LLGtimLSGv4zoee_hRpKwdZO0ACRZfaZh3e-zToaqUdy6Eâ,
âpayloadâ: ââ
}
2020-04-13 18:39:45,622:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 âPOST /acme/authz-v3/3938284668 HTTP/1.1â 200 806
2020-04-13 18:39:45,623:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 13 Apr 2020 16:39:45 GMT
Content-Type: application/json
Content-Length: 806
Connection: keep-alive
Boulder-Requester: 83289978
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel=âindexâ
Replay-Nonce: 0002jc4mX3MNlhVHzdY86LKiXnvMcT92isE7efl7g1BKEO8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
âidentifierâ: {
âtypeâ: âdnsâ,
âvalueâ: âmeine_domain.myfritz.netâ
},
âstatusâ: âpendingâ,
âexpiresâ: â2020-04-20T16:39:45Zâ,
âchallengesâ: [
{
âtypeâ: âhttp-01â,
âstatusâ: âpendingâ,
âurlâ: âhttps://acme-v02.api.letsencrypt.org/acme/chall-v3/3938284668/_Klaawâ,
âtokenâ: âR7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmUâ
},
{
âtypeâ: âdns-01â,
âstatusâ: âpendingâ,
âurlâ: âhttps://acme-v02.api.letsencrypt.org/acme/chall-v3/3938284668/gn6erwâ,
âtokenâ: âR7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmUâ
},
{
âtypeâ: âtls-alpn-01â,
âstatusâ: âpendingâ,
âurlâ: âhttps://acme-v02.api.letsencrypt.org/acme/chall-v3/3938284668/xnXf9Qâ,
âtokenâ: âR7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmUâ
}
]
}
2020-04-13 18:39:45,624:DEBUG:acme.client:Storing nonce: 0002jc4mX3MNlhVHzdY86LKiXnvMcT92isE7efl7g1BKEO8
2020-04-13 18:39:45,625:INFO:certbot.auth_handler:Performing the following challenges:
2020-04-13 18:39:45,625:INFO:certbot.auth_handler:http-01 challenge for meine_domain.myfritz.net
2020-04-13 18:39:45,626:INFO:certbot.plugins.webroot:Using the webroot path /var/www for all unmatched domains.
2020-04-13 18:39:45,626:DEBUG:certbot.plugins.webroot:Creating root challenges validation dir at /var/www/.well-known/acme-challenge
2020-04-13 18:39:45,643:DEBUG:certbot.plugins.webroot:Attempting to save validation to /var/www/.well-known/acme-challenge/R7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmU
2020-04-13 18:39:45,644:INFO:certbot.auth_handler:Waiting for verificationâŠ
2020-04-13 18:39:45,644:DEBUG:acme.client:JWS payload:
bâ{\n âresourceâ: âchallengeâ,\n âtypeâ: âhttp-01â\n}â
2020-04-13 18:39:45,687:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/3938284668/_Klaaw:
{
âprotectedâ: âeyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvODMyODk5NzgiLCAibm9uY2UiOiAiMDAwMmpjNG1YM01ObGhWSHpkWTg2TEtpWG52TWNUOTJpc0U3ZWZsN2cxQktFTzgiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzM5MzgyODQ2NjgvX0tsYWF3In0â,
âsignatureâ: âwZpkif-nSb_oUmdfURSLGDBBPhQ0VPwRU85bVu8sfE7Tm73P8MF0-up7fhH9xtrP4O69wn3JnCShLYhdt5skb0_xJk41NwKrdDpSL38EDYTW0L93O64NpQYYSkiZfjDwBEX4G6sZMLG2KKNtU0Ty9dnRuuL99Djjk4zjaz_ZBIUsoyS3kb7rcLDHiZf7aY5JibW-iza8_f-0ejeN950PTjc0VcKAkBNCVuic-JNAnkeOMLujPixO4tkG76i-3myXWYcFUUvKqng7o99Kt289xSBvtEeZZU1aVnm2_gVLqryVjyjsUR-rleCW5UE5LbleZpp9iuhL7_P1citiG4itr6moHVaGO7aL2FQ_6x05VdMC_JU7slFW8W22IzKbjjs2QGQXUSbRyWBI4MdXr-GTKyYNB2k9Jof-HB-Mav-lXtGaYUSPioSMWf8ct20ClW9V4ymMXXKaynMl0w04p17X6e3S_Foku0V7Cnt2T9HgoxfqOZgMk2BUv4ZQj2mJ8viqzI7q429SEivHcp0y6LfDJbPwwL3HVKFTPcltSnO4udQ5h_lCMYS3TiS1zSVNB0kMI_xyZ64EfNPXZR6vZUSVLsekD94IvkHAgwb7aeU4l-si2GcU2nFRgBPyAXSuYcLm53Sz9_TOKWYr9v8G_eFUful_K1v5hVbSqOS5XJfdU4Qâ,
âpayloadâ: âewogICJyZXNvdXJjZSI6ICJjaGFsbGVuZ2UiLAogICJ0eXBlIjogImh0dHAtMDEiCn0â
}
2020-04-13 18:39:45,859:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 âPOST /acme/chall-v3/3938284668/_Klaaw HTTP/1.1â 200 185
2020-04-13 18:39:45,860:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 13 Apr 2020 16:39:45 GMT
Content-Type: application/json
Content-Length: 185
Connection: keep-alive
Boulder-Requester: 83289978
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel=âindexâ, https://acme-v02.api.letsencrypt.org/acme/authz-v3/3938284668;rel=âupâ
Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/3938284668/_Klaaw
Replay-Nonce: 0002rR4Uug0rknHyE3Fz9_2ur1jy8M2NCESpF-R8Ow4oadw
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
âtypeâ: âhttp-01â,
âstatusâ: âpendingâ,
âurlâ: âhttps://acme-v02.api.letsencrypt.org/acme/chall-v3/3938284668/_Klaawâ,
âtokenâ: âR7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmUâ
}
2020-04-13 18:39:45,860:DEBUG:acme.client:Storing nonce: 0002rR4Uug0rknHyE3Fz9_2ur1jy8M2NCESpF-R8Ow4oadw
2020-04-13 18:39:48,864:DEBUG:acme.client:JWS payload:
bââ
2020-04-13 18:39:48,926:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/3938284668:
{
âprotectedâ: âeyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvODMyODk5NzgiLCAibm9uY2UiOiAiMDAwMnJSNFV1ZzBya25IeUUzRno5XzJ1cjFqeThNMk5DRVNwRi1SOE93NG9hZHciLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzM5MzgyODQ2NjgifQâ,
âsignatureâ: âswkeo597XKqlfSMFwYLhSFDioiuUcs2FRwdtIFHdKWAkMJKYd47D7A3xzqz61cFHXHWDL3CPEk0xuBmABR3G0KAK5GkTmB30SuBVki0lyiKdOF1kMUlvSDS12QP35uO0P7Pd9KEEbS60JqCk5V6Qdnvo3rrtziGiBL1RQdRH0YvgGnlrzo4AHUvatHulNZfI_KBe6yf3a21W60HyQKaXALyct-AMUZkMlFal4UtSGn6Gj2QoYICwVQM__Yt1BWYpa5bUx4IPygErVC8ce3l_6Ctq2co31hFcoNqPCmXHD1wvV_GukBLdg8R7OTusu7BlDQ0VOWBPTXWF2aVgzV7tHpuAbhfcyzjKlYl3uoYcLSZbQfa5Wf6jnh8RJLHEdCV8IC4XQ21xeT8oJrGUv-7dudgm6euQtldcmNUF7vYZ1OK716MpqipP5B0QdoE6FIqF5EqwXvhECz0nQo_wJk9WJcQhGrKGtdLGra18EacRNkU-QS3Fp3UhNP3_glwl19WIhofepaoRbqlO5t2FnpxJiS8hxXlJ24vpB7iIYzlQresWHgSohy0kXgt9ZAsnFdqmWOv6AH4TqVGwS4EJiqsbWfGIOO4uB7tdXiIrCF_SVPuM9_KDZdO4THzuAO0KCEmIBcehdeema9jq60LW9T7-5_pheN2q_yEbqSvWWgcI3Xsâ,
âpayloadâ: ââ
}
2020-04-13 18:39:49,095:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 âPOST /acme/authz-v3/3938284668 HTTP/1.1â 200 1682
2020-04-13 18:39:49,096:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Mon, 13 Apr 2020 16:39:49 GMT
Content-Type: application/json
Content-Length: 1682
Connection: keep-alive
Boulder-Requester: 83289978
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel=âindexâ
Replay-Nonce: 000130PGW_tV5rPAqjYnflfabwcX50j9od4tr3sMzZ9GoVg
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
âidentifierâ: {
âtypeâ: âdnsâ,
âvalueâ: âmeine_domain.myfritz.netâ
},
âstatusâ: âinvalidâ,
âexpiresâ: â2020-04-20T16:39:45Zâ,
âchallengesâ: [
{
âtypeâ: âhttp-01â,
âstatusâ: âinvalidâ,
âerrorâ: {
âtypeâ: âurn:ietf:params:acme:error:unauthorizedâ,
âdetailâ: âInvalid response from http://meine_domain.myfritz.net/.well-known/acme-challenge/R7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmU [83.135.176.75]: "\u003c?xml version=\"1.0\" encoding=\"iso-8859-1\"?\u003e\n\u003c!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\"\n \"http://www."â,
âstatusâ: 403
},
âurlâ: âhttps://acme-v02.api.letsencrypt.org/acme/chall-v3/3938284668/_Klaawâ,
âtokenâ: âR7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmUâ,
âvalidationRecordâ: [
{
âurlâ: âhttp://meine_domain.myfritz.net/.well-known/acme-challenge/R7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmUâ,
âhostnameâ: âmeine_domain.myfritz.netâ,
âportâ: â80â,
âaddressesResolvedâ: [
â83.135.176.75â,
â2001:16b8:2702:350e:9ec7:a6ff:fe0f:5e7câ
],
âaddressUsedâ: â2001:16b8:2702:350e:9ec7:a6ff:fe0f:5e7câ
},
{
âurlâ: âhttp://meine_domain.myfritz.net/.well-known/acme-challenge/R7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmUâ,
âhostnameâ: âmeine_domain.myfritz.netâ,
âportâ: â80â,
âaddressesResolvedâ: [
â83.135.176.75â,
â2001:16b8:2702:350e:9ec7:a6ff:fe0f:5e7câ
],
âaddressUsedâ: â83.135.176.75â
}
]
}
]
}
2020-04-13 18:39:49,097:DEBUG:acme.client:Storing nonce: 000130PGW_tV5rPAqjYnflfabwcX50j9od4tr3sMzZ9GoVg
2020-04-13 18:39:49,098:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
Domain: meine_domain.myfritz.net
Type: unauthorized
Detail: Invalid response from http://meine_domain.myfritz.net/.well-known/acme-challenge/R7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmU [83.135.176.75]: "<?xml version=\"1.0\" encoding=\"iso-8859-1\"?>\n\n<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\"\n \"http://www." 2020-04-13 18:39:49,103:DEBUG:certbot.error_handler:Calling registered functions 2020-04-13 18:39:49,103:INFO:certbot.auth_handler:Cleaning up challenges 2020-04-13 18:39:49,104:DEBUG:certbot.plugins.webroot:Removing /var/www/.well-known/acme-challenge/R7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmU 2020-04-13 18:39:49,104:DEBUG:certbot.plugins.webroot:All challenges cleaned up 2020-04-13 18:39:49,105:DEBUG:certbot.log:Exiting abnormally: Traceback (most recent call last): File "/usr/bin/certbot", line 11, in
load_entry_point(âcertbot==0.31.0â, âconsole_scriptsâ, âcertbotâ)()
File â/usr/lib/python3/dist-packages/certbot/main.pyâ, line 1365, in main
return config.func(config, plugins)
File â/usr/lib/python3/dist-packages/certbot/main.pyâ, line 1250, in certonly
lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
File â/usr/lib/python3/dist-packages/certbot/main.pyâ, line 121, in _get_and_save_cert
lineage = le_client.obtain_and_enroll_certificate(domains, certname)
File â/usr/lib/python3/dist-packages/certbot/client.pyâ, line 410, in obtain_and_enroll_certificate
cert, chain, key, _ = self.obtain_certificate(domains)
File â/usr/lib/python3/dist-packages/certbot/client.pyâ, line 353, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File â/usr/lib/python3/dist-packages/certbot/client.pyâ, line 389, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
File â/usr/lib/python3/dist-packages/certbot/auth_handler.pyâ, line 82, in handle_authorizations
self._respond(aauthzrs, resp, best_effort)
File â/usr/lib/python3/dist-packages/certbot/auth_handler.pyâ, line 168, in _respond
self._poll_challenges(aauthzrs, chall_update, best_effort)
File â/usr/lib/python3/dist-packages/certbot/auth_handler.pyâ, line 239, in _poll_challenges
raise errors.FailedChallenges(all_failed_achalls)
certbot.errors.FailedChallenges: Failed authorization procedure. meine_domain.myfritz.net (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://meine_domain.myfritz.net/.well-known/acme-challenge/R7KjvCU2jtBfftMWzYDn0Hi2Yxzf9T480wKDz-oxqmU [83.135.176.75]: â<?xml version=\"1.0\" encoding=\"iso-8859-1\"?>\n<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"\n "http://www.â
Weià jemand, was hier falsch lÀuft?
Vorab schon einmal vielen Dank.