fzipi/sites-enabled-certbot-test

Created October 29, 2017 18:22

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/fzipi/248f8b076753d36663f63f0990a8d5b3.js"></script>
Save fzipi/248f8b076753d36663f63f0990a8d5b3 to your computer and use it in GitHub Desktop.

Download ZIP

certbot not working with nginx

Raw

sites-enabled-certbot-test

	server {
	listen 80;
	listen [::]:80;


	root /var/www/owaspsummit.org;

	index index.html

	server_name owaspsummit-test.org;

	location / {
	try_files $uri $uri/ =404;
	}


	}

Author

fzipi commented Oct 29, 2017

/etc/nginx/sites-enabled# certbot --nginx -d owaspsummit-test.org --debug
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx
Obtaining a new certificate
Performing the following challenges:
tls-sni-01 challenge for owaspsummit-test.org
Cleaning up challenges
Exiting abnormally:
Traceback (most recent call last):
  File "/usr/bin/certbot", line 11, in <module>
    load_entry_point('certbot==0.19.0', 'console_scripts', 'certbot')()
  File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 861, in main
    return config.func(config, plugins)
  File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 698, in run
    certname, lineage)
  File "/usr/lib/python2.7/dist-packages/certbot/main.py", line 85, in _get_and_save_cert
    lineage = le_client.obtain_and_enroll_certificate(domains, certname)
  File "/usr/lib/python2.7/dist-packages/certbot/client.py", line 357, in obtain_and_enroll_certificate
    certr, chain, key, _ = self.obtain_certificate(domains)
  File "/usr/lib/python2.7/dist-packages/certbot/client.py", line 318, in obtain_certificate
    self.config.allow_subset_of_names)
  File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 74, in get_authorizations
    resp = self._solve_challenges()
  File "/usr/lib/python2.7/dist-packages/certbot/auth_handler.py", line 115, in _solve_challenges
    resp = self.auth.perform(self.achalls)
  File "/usr/lib/python2.7/dist-packages/certbot_nginx/configurator.py", line 767, in perform
    sni_response = chall_doer.perform()
  File "/usr/lib/python2.7/dist-packages/certbot_nginx/tls_sni_01.py", line 55, in perform
    vhost = self.configurator.choose_vhost(achall.domain)
  File "/usr/lib/python2.7/dist-packages/certbot_nginx/configurator.py", line 242, in choose_vhost
    "https://nginx.org/en/docs/http/server_names.html") % (target_name))
MisconfigurationError: Cannot find a VirtualHost matching domain owaspsummit-test.org. In order for Certbot to correctly perform the challenge please add a corresponding server_name directive to your nginx configuration: https://nginx.org/en/docs/http/server_names.html
Please see the logfiles in /var/log/letsencrypt for more details.

Author

fzipi commented Oct 29, 2017

tree execution on /etc/nginx

.
├── conf.d
├── fastcgi.conf
├── fastcgi_params
├── koi-utf
├── koi-win
├── mime.types
├── nginx.conf
├── proxy_params
├── scgi_params
├── sites-available
│   ├── default
│   └── owaspsummit-test.org.conf
├── sites-enabled
│   └── owaspsummit-test.org.conf -> ../sites-available/owaspsummit-test.org.conf
├── snippets
│   ├── fastcgi-php.conf
│   └── snakeoil.conf
├── uwsgi_params
└── win-utf

4 directories, 15 files

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment