Applicable to:
- Plesk Onyx for Windows
- Plesk 12.5 for Windows
Symptoms
Installing Let's Encrypt certificate on the domain fails with one of the following error:
PLESK_ERROR: Error: Could not issue a Let's Encrypt SSL/TLS certificate for example.com.
The authorization token is not available at http://example.com/.well-known/acme-challenge/yNjx7aQ8PM07vmJGa4oxSisY6TArt3wxIH2WJ95uozU.
The token file 'C:\Inetpub\vhosts\example.com\httpdocs\\.well-known\acme-challenge\yNjx7aQ8PM07vmJGa4oxSisY6TArt3wxIH2WJ95uozU' is either unreadable or does not have the read permission.
To resolve the issue, correct the permissions on the token file to make it is possible to download it via the above URL.
See the related Knowledge Base article for details.
Details
Invalid response from https://acme-v01.api.letsencrypt.org/acme/authz/QfoMB10JmKvmi9flCwWkXaC07fyVXr5KpAjQi5NJYpU.
Details:
Type: urn:acme:error:unauthorized
Status: 403
Detail: Invalid response from http://example.com/.well-known/acme-challenge/yNjx7aQ8PM07vmJGa4oxSisY6TArt3wxIH2WJ95uozU [203.0.113.2]: 500
Or:
PLESK_ERROR: Error: Could not issue a Let's Encrypt SSL/TLS certificate for example.com. Authorization for the domain failed.
Details
Invalid response from https://acme-v01.api.letsencrypt.org/acme/authz/xytECea16Tdd1BcyDtyoeEDgZ-mI-LosrFtlMKH3BuQ.
Details:
Type: urn:acme:error:connection
Status: 400
Detail: Fetching http://example.com/.well-known/acme-challenge/SnzniqzGmexAIoINQGNlFE4sS6iDBjD2gI6r8PF1y_s: Timeout
Or:
PLESK_ERROR: Error: Let's Encrypt SSL certificate installation failed: Failed letsencrypt execution: Failed authorization procedure. example.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://example.com/.well-known/acme-challenge/FpudeTlHgkrlU34as62taMhVLxMY0HwmyCJyeQj0lZk [ 203.0.113.2]: 500, www.example.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.example.com/.well-known/acme-challenge/MIm7vDr3buWubgbk1H4ITkDxsmggaPwW2sXEycbCSog [203.0.113.2]: 500
Cause
The invalid Mime type is specified for the website.
Resolution
- Connect to the server using RDP.
- Open Internet Information Services (IIS) > Sites > example.com > MIME Types > delete "." extension:
If the issue persists, follow the steps from the following article: Let's encrypt installation fails with 'Challenge marked as invalid' error
Comments
2 comments
Error: Let's Encrypt SSL certificate installation failed: Challenge marked as invalid. Details: Invalid response from http://tari.sproutserver.com/.well-known/acme-challenge/P57NkXnHTbEYW8D69YO9Bbxj67vjw5DuJeZ1aGrFdTI: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p"
Plesk onyx cloudlinux 7
@iamkingsleyf, check article https://support.plesk.com/hc/en-us/articles/115000165013--HUB-Unable-to-install-Let-s-Encrypt-certificate-Challenge-marked-as-invalid
Please sign in to leave a comment.