“Failed authorization procedure” when trying to renew Certbot certificate

In this tutorial will guide you to fix the following SSL renew error.

Attempting to renew cert (www.colorsplash.com) from /etc/letsencrypt/renewal/www.backoffice.myprintqoe.com.conf produced an unexpected error: Failed authorization procedure. www.colorsplash.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.colorsplash.com/.well-known/acme-challenge/uKhtxwVeP59NdueWEtA3WSs96Zv02_TEcMDPewlLvhk: “\n\n\n \n <meta charset=”". Skipping.

To fix the above error, Please add the below location block to your nginx configuration file or to your nginx vhost :

location ~ /.well-known {
allow all;
}

How it works :

  • The Let’s Encrypt verification server will look for verification files created by the client in a subdir of your docroot ( .well-known). This means that these files must be publicly accessible.
  • In the above location block “^~” modifier does the non-regular expression match. For instance, it could handle requests for /.well-known/acme-challenge/dkaslf_kfjadlkso^kfds-fkdssjl .
  • allow all directive grants the public access to the specified folder.

Leave a Reply

Your email address will not be published. Required fields are marked *