Lets encrypt error on domain for apache2 wordpress site

November 29, 2017 843 views
Apache WordPress Ubuntu 16.04

Greetings, i had two wordpress sites hosted on different VPSes and recently i decided to migrate them both in order to host them in a single droplet. I configured Apache2 for multisite use as well as all the other bells and whistles. The first site migrated more easily and successfully than i imagined so i decided to configure it fully so i know what i would do with the next one. So the the thing i left for last is the installation of the SSL certificates.
I use Let's Encrypt some years now and never came across into any issue. I change the DNS settings of my domains to point the VPS's IP and waited until they refreshed. Then i configures certbot and initiate the command

certbot --apache -d myfirstdomain.com

Usually this works and everything is setup but this time i got this error:

Failed authorization procedure. myfirstdomain.com (tls-sni-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Incorrect validation certificate for tls-sni-01 challenge. Requested 48aafb807ddb7b1f21c7c2fc4f1d9e83.fd2292837145a9884d49c01f03298219.acme.invalid from [2400:6180:100:d0::1a07:e001]:443. Received 2 certificate(s), first certificate had names "myfirstdomain.com"

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: myfirstdomain.com
   Type:   unauthorized
   Detail: Incorrect validation certificate for tls-sni-01 challenge.
   Requested
   48aafb807ddb7b1f21c7c2fc4f1d9e83.fd2292837145a9884d49c01f03298219.acme.invalid
   from [2400:6180:100:d0::1a07:e001]:443. Received 2 certificate(s),
   first certificate had names "myfirstdomain.com"

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address.

After some digging i couldn't find something so i moved on with the second migration which went excellent.
So i thought that the same thing will happen when i will try certbot for the second domain but it didn't. Everything went smoothly and the website is up and running with https redirection and everything.

I am stuck. Any suggestions?
Thanks in advance

1 Answer

Is your domain wrapped in cloudflare?

  • For people who stop here from search, please check your page rules section at your cloudflare dashboard. Deleting the page rules fixed the issue for me.

Have another answer? Share your knowledge.