HELP with problem /.well-known/acme-challenge/

1. Caddy version:

2.6.1

2. How I installed, and run Caddy:

sudo snap install rocketchat-server

a. System environment:

Ubunu 22.04

b. Command:

sudo systemctl restart snap.rocketchat-server.rocketchat-caddy

c. Service/unit/compose file:

no

d. My complete Caddy config:

https://chat.pgem.ru:443

reverse_proxy localhost:3000
tls internal

3. The problem I’m having:

Please write me, how I can write the request code to the configuration file: /var/snap/rocketchat-server/current/Caddyfile
to make the process work, my local path to get the certificate is: /var/www/letsencrypt/.
i need to open a folder for sharing /.well-known/acme-challenge/
thank you!

I don’t have enough knowledge, it gives such an error

4. Error messages and/or full log output:

pgem@chat:~$ sudo certbot certonly --webroot
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Please enter the domain name(s) you would like on your certificate (comma and/or
space separated) (Enter 'c' to cancel): chat.pgem.ru
Requesting a certificate for chat.pgem.ru
Input the webroot for chat.pgem.ru: (Enter 'c' to cancel): /var/www/letsencrypt

Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
  Domain: chat.pgem.ru
  Type:   unauthorized
  Detail: 89.17.41.34: Invalid response from https://chat.pgem.ru/.well-known/acme-challenge/UO87Fl5sgw_GpK772YHICOawg-DBAqilh1BUKrx7MO0: "<!DOCTYPE html>\n<html>\n<head>\n  <link rel=\"stylesheet\" type=\"text/css\" class=\"__meteor-css__\" href=\"/ae2dbc3e8f9ef6251720fa82c0d"

Hint: The Certificate Authority failed to download the temporary challenge files created by Certbot. Ensure that the listed domains serve their content from the provided --webroot-path/-w and that files created there can be downloaded from the internet.

Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.

5. What I already tried:

I don’t have enough knowledge

6. Links to relevant resources: https://chat.pgem.ru:44443/home

Caddy can already acquire certificate by itself, there is no need for certbot. Just remove tls internal line and caddy will get a certificate from letsencrypt.

2 Likes

Thank you so much for the hint! Now I’ll know! This is a very convenient system as part of snap! The topic is closed.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.