I ran this command: sudo certbot --nginx -d jesuschristmind.org -d www.jesuschristmind.org It produced this output: Saving debug log to /var/log/letsencrypt/letsencrypt.log Plugins selected: Authenticator nginx, Installer nginx Obtaining a new certificate Performing the following challenges: http-01 challenge for jesuschristmind.com Waiting for verification… Challenge failed for domain jesuschristmind.com http-01 challenge for jesuschristmind.com Cleaning up challenges Some challenges have failed.
The following errors were reported by the server:
Domain: jesuschristmind.com Type: unauthorized Detail: Invalid response from https://jesuschristmind.com/.well-known/acme-challenge/NuaFMRCV_PVElHT6Zp6vzMeTp1RT4NUb4d_ojT0mU7Y [2606:4700::6810:f34e]: 404
To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. My web server is (include version): nginx The operating system my web server runs on is (include version): ubuntu My hosting provider, if applicable, is: Digital Ocean I can login to a root shell on my machine (yes or no, or I don’t know): Yes I’m using a control panel to manage my site (no, or provide the name and version of the control panel):Yes
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): Certbot
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
There was recently a similar question asked here:
This error usually indicates that the domain name that you are trying to get the certificate for does not point to the server that you are running the
To fix that, you need to either change the A record of the domain name to match the Droplet’s IP address or run the
certbotcommand on the server that your domain name is already pointing to.
Hope that this helps!