Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Submit-ACMEChallenge returns Unexpected Error #64

Closed
jlcastillo opened this issue Dec 28, 2015 · 7 comments
Closed

Submit-ACMEChallenge returns Unexpected Error #64

jlcastillo opened this issue Dec 28, 2015 · 7 comments

Comments

@jlcastillo
Copy link

I'm following this tutorial:

https://cultiv.nl/blog/lets-encrypt-on-windows/

but when I get to the Submit-ACMEChallenge statement, this is what I get:

Submit-ACMECertificate : Unexpected error

  • $certificateInfo = Submit-ACMECertificate -Ref cert1
  •                ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    • CategoryInfo : NotSpecified: (:) [Submit-ACMECertificate], AcmeWebException
    • FullyQualifiedErrorId : ACMESharp.AcmeClient+AcmeWebException,ACMESharp.POSH.SubmitCertificate

How can I fix it?
@ebekker
Copy link
Owner

ebekker commented Dec 29, 2015

The unexpected error in this step usually means an unexpected error response from the ACME server (Let's Encrypt).

Are you using the staging or beta server endpoint?

Can you check your system requirements against these that I just recently put up?

@ebekker
Copy link
Owner

ebekker commented Dec 29, 2015

Also, how many times did you try? A few users have pointed out that if they get a similar error and then later retry again (either just this step, or the complete series of steps starting with validating a DNS Identifier and all that follow), they get success usually because LE's server was either temporarily down for maintenance or unexpectedly down for issues).

@jlcastillo
Copy link
Author

I'm using the staging server:

Initialize-ACMEVault -BaseURI https://acme-staging.api.letsencrypt.org/directory

I tried yesterday and today, with the same result.
I have .NET Framework 4.5.2 and PowerShell 4.0.

@jlcastillo
Copy link
Author

By the way, I'm using the binaries that I obtained from here:

https://www.kingbain.com/letsencrypt-powershell-modules-for-iis-and-apache/

@ebekker
Copy link
Owner

ebekker commented Dec 29, 2015

That version seems fairly recent, there is slightly newer release but I suspect it doesn't have much that differs from the release you have.

There have also been more recent changes added to the master branch but again I don't think they will have an impact on your situation.

Can you verify that your site can be externally accessed on port 80 for any file rooted at the following path: .well-known/acme-challenge/

Also, these files should return with a Content-type of text/json

@jlcastillo
Copy link
Author

Thanks, I fixed it following your instructions. This is what I did:

  1. save the challenge with the extension .json instead of .html. In my case Apache 2.4 sets the right headers automatically.

  2. make sure the challenge is properly saved and served. In my case I always store the challenge with the same file name, and I proxy all requests that look like ".well-known/acme-challenge" to this file. But this challenge file was not overwritten with every execution, therefore the challenge that I served was old, from a previous execution.

@ebekker
Copy link
Owner

ebekker commented Dec 30, 2015

Great!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ebekker @jlcastillo