Expected challenge type tls-sni-01 not available for sub.domian.com #760
Comments
1liminal1
changed the title
|
Unfortunately TLS-SNI-01 has been disabled by Let's Encrypt for most cases due to security concerns. |
|
In the new release the option is no longer presented, though the plugin will still work for existing renewals. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Issue description
Hi guys,
When trying to create a new certificate i get the above response. This is with the verbose enabled. its very vague?
FYI; As I'm using server farms and URL rewrite, there is no /wellknown HTTP cannot be used.
[DBUG] Loading signer from C:\ProgramData\letsencrypt-win-simple\httpsacme-v01.api.letsencrypt.org\Signer
[DBUG] Getting AcmeServerDirectory
[DBUG] Send GET request to https://acme-v01.api.letsencrypt.org/directory
[DBUG] Loading registration from C:\ProgramData\letsencrypt-win-simple\httpsacme-v01.api.letsencrypt.org\Registration
[INFO] Authorize identifier: DOMAIN
[DBUG] Send POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz
[DBUG] Certificate store: WebHosting
[EROR] Expected challenge type tls-sni-01 not available for sub.domian.com.
[EROR] Create certificate failed
Steps to reproduce
Create a SAN cert with manually entered host names.
[INFO] Let's Encrypt Windows Simple (LEWS)
[INFO] Software version 198.4.6605.15190 (RELEASE)
[INFO] IIS version 10.0
[INFO] ACME Server https://acme-v01.api.letsencrypt.org/
The text was updated successfully, but these errors were encountered: