You could give this error when renew Let’s Encrypt certificate
IMPORTANT NOTES: - The following errors were reported by the server: Domain: ws.tutorialspots.xyz Type: unauthorized Detail: Incorrect validation certificate for tls-sni-01 challenge. Requested 49dd404dd072a5bd768a61335c5b1337.8d41679c83e3fa32a7fdd48bf4a6d5a8.acme.invali d from 111.111.111.111:443. Received 2 certificate(s), first certificate had names "ws.tutorialspots.xyz"
How to fix this error:
Simple, you can use this command:
./certbot-auto certonly -d ws.tutorialspots.xyz --manual
Result:
[root@tutorialspots ~]# ./certbot-auto certonly -d ws.tutorialspots.xyz --manual Saving debug log to /var/log/letsencrypt/letsencrypt.log Plugins selected: Authenticator manual, Installer None Cert is due for renewal, auto-renewing... Renewing an existing certificate Performing the following challenges: http-01 challenge for ws.gochat.xyz ------------------------------------------------------------------------------- NOTE: The IP of this machine will be publicly logged as having requested this certificate. If you're running certbot in manual mode on a machine that is not your server, please ensure you're okay with that. Are you OK with your IP being logged? ------------------------------------------------------------------------------- (Y)es/(N)o: y ------------------------------------------------------------------------------- Create a file containing just this data: YMyGrPdjLaie0P_OCnv4hlCI-t2MBW5Y6SEOjMVknFo.0ltpGUp4YFjKO3JAqFytoi5L8yPwKhy3WwEY XkvDkSw And make it available on your web server at this URL: http://ws.tutorialspots.xyz/.well-known/acme-challenge/YMyGrPdjLaie0P_OCnv4hlCI-t2MBW5Y 6SEOjMVknFo ------------------------------------------------------------------------------- Press Enter to Continue Waiting for verification... Cleaning up challenges IMPORTANT NOTES: - Congratulations! Your certificate and chain have been saved at: /etc/letsencrypt/live/ws.tutorialspots.xyz/fullchain.pem Your key file has been saved at: /etc/letsencrypt/live/ws.tutorialspots.xyz/privkey.pem Your cert will expire on 2018-05-02. To obtain a new or tweaked version of this certificate in the future, simply run certbot-auto again. To non-interactively renew *all* of your certificates, run "certbot-auto renew" - If you like Certbot, please consider supporting our work by: Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate Donating to EFF: https://eff.org/donate-le
