Renouvellement de certficat

Luc_Rapha · July 24, 2024, 2:50pm

Bonjour la communauté,

Depuis un bout de temps j’essaie de renouveller mes certificats pour mon serveur web IIS en vain,
J’ai utilisé Certify the web après plusieurs recherches. Lorsque je lance ce dernier je reçois une erreur comme quoi le serveur de certify the web ne parvient pas à établir une connexion avec mon serveur IIS.

"

Response from Certificate Authority: During secondary validation: 205.237.231.85: Fetching http://csp.cegep-matane.qc.ca/.well-known/acme-challenge/PKbvOc7_gZgKcB6O1SxFcJFJPo9PwGugCwb4ZBp8jD0: Timeout during connect (likely firewall problem) [BadRequest :: urn:ietf:params:acme:error:connection]
2024-07-24 10:26:39.862 -04:00 [ERR] Validation of the required challenges did not complete successfully. Validation failed: csp.cegep-matane.qc.ca [dns]
Response from Certificate Authority: During secondary validation: 205.237.231.85: Fetching http://csp.cegep-matane.qc.ca/.well-known/acme-challenge/PKbvOc7_gZgKcB6O1SxFcJFJPo9PwGugCwb4ZBp8jD0: Timeout during connect (likely firewall problem) [BadRequest :: urn:ietf:params:acme:error:connection]"

webprofusion · July 25, 2024, 4:36am

Hi, this error is from the certificate authority (which by default is Let’s Encrypt). They are telling you that TCP port 80 is blocked by your firewall.

The default domain validation method is HTTP (TCP port 80) so you need to enable port 80 on your firewall and any cloud networking control panel you may use. Or you may be blocking Geographically, which won’t work because Let’s Encrypt test from several countries.

Alternatively you could perhaps switch to using DNS domain validation : DNS Validation (dns-01) | Certify The Web Docs