Hi , I am new to using CertifyTheWeb and IIS manager. I have a site hosted on IIS and SSL from CertifyTheWeb, while renewing the certificate for one of my site, I get an error: Could not verify URL is accessible: http ://xxxxxxxx.co.uk/.well-known/acme-challenge/configcheck.
I have debuged it using Let’s debug found from one of the questions in the community forum, the result was:
ERROR
xxxxxxxx.co. uk has an A (IPv4) record (1xx.xx.1xx.249) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
Get "–http ://xxxxxxxxxx.co.uk/.well-known/acme-challenge/letsdebug-test-- ": EOF
Trace: @0ms: Making a request to http ://xxxxxxxxxxx.co.uk/.well-known/acme-challenge/letsdebug-test (using initial IP 1xx.xx.1xx.249) @0ms: Dialing 1xx.xx.1xx.249 @144ms: Experienced error: EOF
ERROR
A test authorization for xxxxxxx.co.uk to the Let’s Encrypt staging service has revealed issues that may prevent any certificate for this domain being issued.
1xx.xx.1xx.249: Fetching http ://xxxxxxxxx.co.uk/.well-known/acme-challenge/lotUs6UL8ErOaxqb1RCxnysg3bM76MljER6cqRfsGbg: Error getting validation data
Let’s Encrypt thinks your domain has no port 80 server available. Usually Certify will spin one up, but if your router/firewall does not forward port 80 to Certify’s machine, then you cannot generate certificates using HTTP.
Hi @jljtgr thank you for your response. I have other sites running as well which don’t give such errors. i.e the certificates and the http-01 challenge gets validated successfully.
That sounds like your domain just doesn’t point to the server that Certify The Web is running on, difficult to tell without knowing the actual domain.
When you browse to your website http ://xxxxxxxx.co.uk/.well-known/acme-challenge/configcheck you should normally get a 404 error (page not found) or some other error bit it should at least connect to your server and get a response of some kind. Currently when Let’s Debug checks your site it can’t connect at all on port 80 (http)
If you share your real URL and we can help out. If you are a licensed user you can alternatively email support {at} certifytheweb.com for private support on this issue - you would need to provide your log file for the managed certificate.