Can't install ssl to hostna,e
I have tried all i could to install SSL for my hostname, tho it has a self signed certificate currently, its still not trusted by the browser. Can you give a concrete guide on how to do that and my hostname will be protected?
/usr/local/cpanel/bin/checkallsslcerts
returned:
The system will check for the certificate for the “cpanel” service.
The system will attempt to replace the self-signed certificate for the “cpanel” service with a signed certificate from the “Let’s Encrypt™” provider.
The system will attempt to install a certificate for the “cpanel” service from the system SSL storage.
None of the certificates in the system SSL storage were acceptable to use for the “cpanel” service.
The system will attempt to get a new certificate for the domains: autoconfig.host.hostboldy.com, autodiscover.host.hostboldy.com, cpanel.host.hostboldy.com, cpcalendars.host.hostboldy.com, cpcontacts.host.hostboldy.com, host.hostboldy.com, ipv6.host.hostboldy.com, mail.host.hostboldy.com, webdisk.host.hostboldy.com, webmail.host.hostboldy.com, whm.host.hostboldy.com, www.host.hostboldy.com
The domain “cpcalendars.host.hostboldy.com” is not suitable for HTTP DCV because the system did not find any A or AAAA records with a public IP address.
The domain “cpcontacts.host.hostboldy.com” is not suitable for HTTP DCV because the system did not find any A or AAAA records with a public IP address.
The domain “ipv6.host.hostboldy.com” is not suitable for HTTP DCV because the system did not find any A or AAAA records with a public IP address.
The domain “www.host.hostboldy.com” is not suitable for HTTP DCV because the system did not find any A or AAAA records with a public IP address.
The system failed to validate domain control for the domain “webmail.host.hostboldy.com” using the “HTTP” DCV method: 403 urn:ietf:params:acme:error:unauthorized (The client lacks sufficient authorization) (161.97.163.141: Invalid response from http://webmail.host.hostboldy.com/.well-known/acme-challenge/j8qGueK2v9eC54_wV6Ei3_sLJwXW2BO5PupgVDFUkac: 400)
The system failed to validate domain control for the domain “autodiscover.host.hostboldy.com” using the “HTTP” DCVmethod: 403 urn:ietf:params:acme:error:unauthorized (The client lacks sufficient authorization) (161.97.163.141: Invalid response from http://autodiscover.host.hostboldy.com/.well-known/acme-challenge/UFTVOrtT2zmczp2gyP-F3aWefsROtZbEROnSPWtkBXE: 400)
The system failed to validate domain control for the domain “host.hostboldy.com” using the “HTTP” DCV method: 403 urn:ietf:params:acme:error:unauthorized (The client lacks sufficient authorization) (161.97.163.141: Invalid response from http://host.hostboldy.com/.well-known/acme-challenge/Z4-6Ab8dPUJLhqu65Scmp7GAXc9WLHZQ_SUX5SxSkrE: 404)
The system failed to validate domain control for the domain “whm.host.hostboldy.com” using the “HTTP” DCV method: 403 urn:ietf:params:acme:error:unauthorized (The client lacks sufficient authorization) (161.97.163.141: Invalid response from http://whm.host.hostboldy.com/.well-known/acme-challenge/WJ-YpTyZmWVYa0PS2ZidZ48S0fksgzGngPoJKrLmHF4: 400)
The system failed to validate domain control for the domain “cpanel.host.hostboldy.com” using the “HTTP” DCV method: 403 urn:ietf:params:acme:error:unauthorized (The client lacks sufficient authorization) (161.97.163.141: Invalidresponse from http://cpanel.host.hostboldy.com/.well-known/acme-challenge/_8LFSADc8FsfaHMhJ4iNDaUoBa3vgLsCAZiDxWB1VME: 400)
The system failed to validate domain control for the domain “webdisk.host.hostboldy.com” using the “HTTP” DCV method: 403 urn:ietf:params:acme:error:unauthorized (The client lacks sufficient authorization) (161.97.163.141: Invalid response from http://webdisk.host.hostboldy.com/.well-known/acme-challenge/lMuSZmB4Fx58HBJRlj6cY_rLH1CEMa-T2m3vO-5fkj8: 400)
The system failed to validate domain control for the domain “autoconfig.host.hostboldy.com” using the “HTTP” DCV method: 403 urn:ietf:params:acme:error:unauthorized (The client lacks sufficient authorization) (161.97.163.141: Invalid response from http://autoconfig.host.hostboldy.com/.well-known/acme-challenge/pKoamBiIS_8TYWu781cVD_EvQtz03EBHFHvc69u64WU: 400)
The system failed to validate domain control for the domain “mail.host.hostboldy.com” using the “HTTP” DCV method:403 urn:ietf:params:acme:error:unauthorized (The client lacks sufficient authorization) (161.97.163.141: Invalid response from http://mail.host.hostboldy.com/.well-known/acme-challenge/Qzickkk3CI1EeyWoyLZw0E_LUzlFgj6Dsdl4aS2if3Y:404)
The domain “autoconfig.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “autodiscover.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “cpanel.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “cpcalendars.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “cpcontacts.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “ipv6.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “mail.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “webdisk.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “webmail.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “whm.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The domain “www.host.hostboldy.com” is not suitable for DNS DCV because this system is not the authoritative nameserver.
The system will not attempt to get a new certificate from the “Let’s Encrypt™” provider because no suitable domains were found.
The system will check for the certificate for the “dovecot” service.
The system will attempt to replace the self-signed certificate for the “dovecot” service with a signed certificatefrom the “Let’s Encrypt™” provider.
The system will attempt to install a certificate for the “dovecot” service from the system SSL storage.
None of the certificates in the system SSL storage were acceptable to use for the “dovecot” service.
The system previously attempted to get a new certificate from the “Let’s Encrypt™” provider and will not make another attempt.
The system will check for the certificate for the “exim” service.
The system will attempt to replace the self-signed certificate for the “exim” service with a signed certificate from the “Let’s Encrypt™” provider.
The system will attempt to install a certificate for the “exim” service from the system SSL storage.
None of the certificates in the system SSL storage were acceptable to use for the “exim” service.
The system previously attempted to get a new certificate from the “Let’s Encrypt™” provider and will not make another attempt.
The system will check for the certificate for the “ftp” service.
The system will attempt to replace the self-signed certificate for the “ftp” service with a signed certificate from the “Let’s Encrypt™” provider.
The system will attempt to install a certificate for the “ftp” service from the system SSL storage.
None of the certificates in the system SSL storage were acceptable to use for the “ftp” service.
The system previously attempted to get a new certificate from the “Let’s Encrypt™” provider and will not make another attempt.
-
Hey there! Whenever you get the "The client lacks sufficient authorization" error, that's usually because there is a DNS issue such as Cloudflare hosting the domain, or there is a CAA record in the domain's DNS zone that is no longer valid. Can you check and see if either of those are the case here?
0
Please sign in to leave a comment.
Comments
1 comment