Text only | Text with Images

OPNsense Forum

International Forums => German - Deutsch => Topic started by: LHBL2003 on May 31, 2021, 10:41:44 AM

Title: Lets Encrypt - "urn:ietf:params:acme:error:unauthorized" im Produktivmodus
Post by: LHBL2003 on May 31, 2021, 10:41:44 AM
Hi,

---------------------
Nachtrag vorweg:
Scheinbar habe ich ein proxy Problem. Denn ich habe die Umleitung von Http auf Https deaktiviert und nun bekomme ich nicht nur von Lets Encrypt Test sondern auch von Produktiv ein Zertifikat ausgestellt.
Gibt es irgendwo eine gute Anleitung wie man Lets Encrypt mit umleitung von http auf https richtig einrichtet.
Entweder Funktioniert Lets Encrypt oder die Webseite mit http und https. Aber nicht beides. (Außer ich bin im  Lets Encrypt Testmodus.)
---------------------


ich habe ein Zertifikat für 2 Sub Domains angelegt.
Im Testmodus wird das Zertifikat erstellt, im Produktiv Modus schlägt es fehl.
Im Order /var/log/ habe ich das Log acme.sh.log gefunden und für den fall Testmodus und Produktivmodus ein Logfile im Anhang gesetzt.

Nachfolgend mein Fehlerpart aus dem Produktivmodus.
Hat jemand eine Idee, was der Grund für die Fehlermeldung sein kann?
PS: Ich verwende auch den HA Proxy Dabei und OpnSense läuft auf der aktuellen Version.

Code Select

....

'
[Mon May 31 09:06:44 CEST 2021] code='200'
[Mon May 31 09:06:44 CEST 2021] original='{
  "type": "http-01",
  "status": "invalid",
  "error": {
    "type": "urn:ietf:params:acme:error:unauthorized",
    "detail": "Invalid response from http://onoff.MyDomain.com/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM [123.456.789.123]: 503",
    "status": 403
  },
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A",
  "token": "ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM",
  "validationRecord": [
    {
      "url": "http://onoff.MyDomain.com/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM",
      "hostname": "onoff.MyDomain.com",
      "port": "80",
      "addressesResolved": [
        "123.456.789.123"
      ],
      "addressUsed": "123.456.789.123"
    }
  ],
  "validated": "2021-05-31T07:06:41Z"
}'
[Mon May 31 09:06:44 CEST 2021] response='{"type":"http-01","status":"invalid","error":{"type":"urn:ietf:params:acme:error:unauthorized","detail":"Invalid response from http://onoff.MyDomain.com/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM [123.456.789.123]: 503","status": 403},"url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A","token":"ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM","validationRecord":[{"url":"http://onoff.MyDomain.com/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM","hostname":"onoff.MyDomain.com","port":"80","addressesResolved":["123.456.789.123"],"addressUsed":"123.456.789.123"}],"validated":"2021-05-31T07:06:41Z"}'
[Mon May 31 09:06:44 CEST 2021] original='{"type":"http-01","status":"invalid","error":{"type":"urn:ietf:params:acme:error:unauthorized","detail":"Invalid response from http://onoff.MyDomain.com/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM [123.456.789.123]: 503","status": 403},"url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A","token":"ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM","validationRecord":[{"url":"http://onoff.MyDomain.com/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM","hostname":"onoff.MyDomain.com","port":"80","addressesResolved":["123.456.789.123"],"addressUsed":"123.456.789.123"}],"validated":"2021-05-31T07:06:41Z"}'
[Mon May 31 09:06:44 CEST 2021] response='{"type":"http-01","status":"invalid","error":{"type":"urn:ietf:params:acme:error:unauthorized","detail":"Invalid response from http://onoff.MyDomain.com/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM [123.456.789.123]: 503","status": 403},"url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A","token":"ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM","validationRecord":[{"url":"http://onoff.MyDomain.com/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM","hostname":"onoff.MyDomain.com","port":"80","addressesResolved":["123.456.789.123"],"addressUsed":"123.456.789.123"}],"validated":"2021-05-31T07:06:41Z"}'
[Mon May 31 09:06:44 CEST 2021] Success
[Mon May 31 09:06:44 CEST 2021] pid
[Mon May 31 09:06:44 CEST 2021] Verifying: test.MyDomain.com
[Mon May 31 09:06:44 CEST 2021] d='test.MyDomain.com'
[Mon May 31 09:06:44 CEST 2021] keyauthorization='AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE'
[Mon May 31 09:06:44 CEST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw'
[Mon May 31 09:06:44 CEST 2021] _currentRoot='/var/etc/acme-client/challenges'
[Mon May 31 09:06:44 CEST 2021] wellknown_path='/var/etc/acme-client/challenges/.well-known/acme-challenge'
[Mon May 31 09:06:44 CEST 2021] writing token:AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc to /var/etc/acme-client/challenges/.well-known/acme-challenge/AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc
[Mon May 31 09:06:44 CEST 2021] Changing owner/group of .well-known to root:wheel
[Mon May 31 09:06:44 CEST 2021] Trigger domain validation.
[Mon May 31 09:06:44 CEST 2021] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw'
[Mon May 31 09:06:44 CEST 2021] _t_key_authz='AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE'
[Mon May 31 09:06:44 CEST 2021] _t_vtype='http-01'
[Mon May 31 09:06:44 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw'
[Mon May 31 09:06:44 CEST 2021] payload='{}'
[Mon May 31 09:06:44 CEST 2021] Use cached jwk for file: /var/etc/acme-client/home/ca/acme-v02.api.letsencrypt.org/account.key
[Mon May 31 09:06:44 CEST 2021] Use _CACHED_NONCE='0103OqV6I1qpSi7zeXybTLdXOf_J7cS-4311WfaTH5CBwO0'
[Mon May 31 09:06:44 CEST 2021] nonce='0103OqV6I1qpSi7zeXybTLdXOf_J7cS-4311WfaTH5CBwO0'
[Mon May 31 09:06:44 CEST 2021] POST
[Mon May 31 09:06:44 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw'
[Mon May 31 09:06:44 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMTAzT3FWNkkxcXBTaTd6ZVh5YlRMZFhPZl9KN2NTLTQzMTFXZmFUSDVDQndPMCIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMTM1ODU0ODEyMjMvVUFqQVR3IiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjU0MTg4ODUifQ", "payload": "e30", "signature": "HPPATY4X3n1s1Z7Bnbt3SfiILaMDWmguFou92wl1vn6ZS-BjaQ2vFqHJ0YEravTGGjjq8iCn8dsw2UHX3mrC_tZtwJWLOz6fBExhDPBZ4OzUTTwI6vH4a-p8MPm8XpQWfL-ws1T6BtHQEjyVNDsTD3_zfUEg4ei6O18iIJomVzlL1NyfkCN68YB6tdkul4YxwW2Ypt_rdJOQiVozakxjq7tBV9nI8rYEWD0huypdHlf3sk8TPvkpf8CsyC8hQFREfkZDjQlbCwQqvHExR9Pd8NMW2jqSDTjY8jfTkprjVkjvgAfMnGWg0VXqO18YvJD32n8PBKp-_d1AN0ARLQPYFQ"}'
[Mon May 31 09:06:44 CEST 2021] _postContentType='application/jose+json'
[Mon May 31 09:06:44 CEST 2021] Http already initialized.
[Mon May 31 09:06:44 CEST 2021] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header  -L '
[Mon May 31 09:06:44 CEST 2021] _ret='0'
[Mon May 31 09:06:44 CEST 2021] responseHeaders='HTTP/2 200
server: nginx
date: Mon, 31 May 2021 07:06:44 GMT
content-type: application/json
content-length: 186
boulder-requester: 125418885
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
link: <https://acme-v02.api.letsencrypt.org/acme/authz-v3/13585481223>;rel="up"
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw
replay-nonce: 01037WkXQ2037Xyt83GT8KS5mtiY6r7iLJusk24F0NtWoGY
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Mon May 31 09:06:44 CEST 2021] code='200'
[Mon May 31 09:06:44 CEST 2021] original='{
  "type": "http-01",
  "status": "pending",
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw",
  "token": "AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc"
}'
[Mon May 31 09:06:44 CEST 2021] response='{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw","token":"AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc"}'
[Mon May 31 09:06:44 CEST 2021] trigger validation code: 200
[Mon May 31 09:06:44 CEST 2021] sleep 2 secs to verify
[Mon May 31 09:06:46 CEST 2021] checking
[Mon May 31 09:06:46 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw'
[Mon May 31 09:06:46 CEST 2021] payload
[Mon May 31 09:06:46 CEST 2021] Use cached jwk for file: /var/etc/acme-client/home/ca/acme-v02.api.letsencrypt.org/account.key
[Mon May 31 09:06:46 CEST 2021] Use _CACHED_NONCE='01037WkXQ2037Xyt83GT8KS5mtiY6r7iLJusk24F0NtWoGY'
[Mon May 31 09:06:46 CEST 2021] nonce='01037WkXQ2037Xyt83GT8KS5mtiY6r7iLJusk24F0NtWoGY'
[Mon May 31 09:06:46 CEST 2021] POST
[Mon May 31 09:06:46 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw'
[Mon May 31 09:06:46 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMTAzN1drWFEyMDM3WHl0ODNHVDhLUzVtdGlZNnI3aUxKdXNrMjRGME50V29HWSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMTM1ODU0ODEyMjMvVUFqQVR3IiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjU0MTg4ODUifQ", "payload": "", "signature": "dfAhqzVPhuFZ0blibnKkxRE9q9vTdniqvWXur9NHNtMkyY1LFu3Zck8a9vqcu94xD5dWJjNSFsZxElWSG9jcRgpdHCvlCR4aPqmaLAfx_zInrVTv41ExB77nZQyBDH6kfxC7ePMlP1rxliFWOtd2y06NdiwPNkdznTinbEPw1JYF3AY302oSofHJt-K11ZH8c9J5CenHtGLiglOP4Q3DaXP9mlXHpiTsDGj3Tdkma3NCSwmxpzuYgrF4ot7PeJXpvgaPjPm3PzSmCPvBjgdA-9lls-lAPH16ucFPJc1J1Tas3IIhEVVHIEYTGU0fulhOJcQeKM7Lq-yG8ayktBYAxQ"}'
[Mon May 31 09:06:46 CEST 2021] _postContentType='application/jose+json'
[Mon May 31 09:06:46 CEST 2021] Http already initialized.
[Mon May 31 09:06:46 CEST 2021] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header  -L '
[Mon May 31 09:06:47 CEST 2021] _ret='0'
[Mon May 31 09:06:47 CEST 2021] responseHeaders='HTTP/2 200
server: nginx
date: Mon, 31 May 2021 07:06:47 GMT
content-type: application/json
content-length: 792
boulder-requester: 125418885
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
link: <https://acme-v02.api.letsencrypt.org/acme/authz-v3/13585481223>;rel="up"
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw
replay-nonce: 0003DmqppiVODzQHJRZj-9bxzBXNNMnWokLJoA6WYyJDyvs
x-frame-options: DENY
strict-transport-security: max-age=604800

'
[Mon May 31 09:06:47 CEST 2021] code='200'
[Mon May 31 09:06:47 CEST 2021] original='{
  "type": "http-01",
  "status": "invalid",
  "error": {
    "type": "urn:ietf:params:acme:error:unauthorized",
    "detail": "Invalid response from http://test.MyDomain.com/.well-known/acme-challenge/AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc [123.456.789.123]: 503",
    "status": 403
  },
  "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw",
  "token": "AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc",
  "validationRecord": [
    {
      "url": "http://test.MyDomain.com/.well-known/acme-challenge/AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc",
      "hostname": "test.MyDomain.com",
      "port": "80",
      "addressesResolved": [
        "123.456.789.123"
      ],
      "addressUsed": "123.456.789.123"
    }
  ],
  "validated": "2021-05-31T07:06:44Z"
}'
[Mon May 31 09:06:47 CEST 2021] response='{"type":"http-01","status":"invalid","error":{"type":"urn:ietf:params:acme:error:unauthorized","detail":"Invalid response from http://test.MyDomain.com/.well-known/acme-challenge/AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc [123.456.789.123]: 503","status": 403},"url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw","token":"AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc","validationRecord":[{"url":"http://test.MyDomain.com/.well-known/acme-challenge/AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc","hostname":"test.MyDomain.com","port":"80","addressesResolved":["123.456.789.123"],"addressUsed":"123.456.789.123"}],"validated":"2021-05-31T07:06:44Z"}'
[Mon May 31 09:06:47 CEST 2021] original='{"type":"http-01","status":"invalid","error":{"type":"urn:ietf:params:acme:error:unauthorized","detail":"Invalid response from http://test.MyDomain.com/.well-known/acme-challenge/AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc [123.456.789.123]: 503","status": 403},"url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw","token":"AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc","validationRecord":[{"url":"http://test.MyDomain.com/.well-known/acme-challenge/AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc","hostname":"test.MyDomain.com","port":"80","addressesResolved":["123.456.789.123"],"addressUsed":"123.456.789.123"}],"validated":"2021-05-31T07:06:44Z"}'
[Mon May 31 09:06:47 CEST 2021] response='{"type":"http-01","status":"invalid","error":{"type":"urn:ietf:params:acme:error:unauthorized","detail":"Invalid response from http://test.MyDomain.com/.well-known/acme-challenge/AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc [123.456.789.123]: 503","status": 403},"url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw","token":"AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc","validationRecord":[{"url":"http://test.MyDomain.com/.well-known/acme-challenge/AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc","hostname":"test.MyDomain.com","port":"80","addressesResolved":["123.456.789.123"],"addressUsed":"123.456.789.123"}],"validated":"2021-05-31T07:06:44Z"}'
[Mon May 31 09:06:47 CEST 2021] Success
[Mon May 31 09:06:47 CEST 2021] pid
[Mon May 31 09:06:47 CEST 2021] Verifying: onoff.MyDomain.com
[Mon May 31 09:06:47 CEST 2021] d='onoff.MyDomain.com'
[Mon May 31 09:06:47 CEST 2021] keyauthorization='ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE'
[Mon May 31 09:06:47 CEST 2021] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:47 CEST 2021] _currentRoot='/var/etc/acme-client/challenges'
[Mon May 31 09:06:47 CEST 2021] wellknown_path='/var/etc/acme-client/challenges/.well-known/acme-challenge'
[Mon May 31 09:06:47 CEST 2021] writing token:ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM to /var/etc/acme-client/challenges/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM
[Mon May 31 09:06:47 CEST 2021] Changing owner/group of .well-known to root:wheel
[Mon May 31 09:06:47 CEST 2021] Trigger domain validation.
[Mon May 31 09:06:47 CEST 2021] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:47 CEST 2021] _t_key_authz='ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE'
[Mon May 31 09:06:47 CEST 2021] _t_vtype='http-01'
[Mon May 31 09:06:47 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:47 CEST 2021] payload='{}'
[Mon May 31 09:06:47 CEST 2021] Use cached jwk for file: /var/etc/acme-client/home/ca/acme-v02.api.letsencrypt.org/account.key
[Mon May 31 09:06:47 CEST 2021] Use _CACHED_NONCE='0003DmqppiVODzQHJRZj-9bxzBXNNMnWokLJoA6WYyJDyvs'
[Mon May 31 09:06:47 CEST 2021] nonce='0003DmqppiVODzQHJRZj-9bxzBXNNMnWokLJoA6WYyJDyvs'
[Mon May 31 09:06:47 CEST 2021] POST
[Mon May 31 09:06:47 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:47 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMDAzRG1xcHBpVk9EelFISlJaai05Ynh6QlhOTk1uV29rTEpvQTZXWXlKRHl2cyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMTM1ODU0ODEyMjIvSEsxZTlBIiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjU0MTg4ODUifQ", "payload": "e30", "signature": "ao8-FpCW43KaqqEsjrnp60SgCbpSp8WFbJCFbkOwpiDyYP8TvodnlG05ZkAKZjiRqagnAx2NuAFXMCzSX1EgjVhO9oV2XtgjyiZd0thBdcIRADw8tr5QQh9U3nEYQOT0_omN95SDlmIFdElGybu_Fw2IHz8JcDg8Sivt9U-0Kpjf6pfg59izagY5J6SqcKymU7wObIlWqN10rZlR1HBmKlFA_wa3CelsBwarT0LCX02G3rhA7QSsJO_zN2bSAcUXM4jWioQ_lBgK2N25AqBMlj3gKuIE4470oQ4Svy03aDXnVFqeJk3-TdBVRw2naAk6SL_khx1-NfD7WJXfuy95Lg"}'
[Mon May 31 09:06:47 CEST 2021] _postContentType='application/jose+json'
[Mon May 31 09:06:47 CEST 2021] Http already initialized.
[Mon May 31 09:06:47 CEST 2021] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header  -L '
[Mon May 31 09:06:48 CEST 2021] _ret='0'
[Mon May 31 09:06:48 CEST 2021] responseHeaders='HTTP/2 400
server: nginx
date: Mon, 31 May 2021 07:06:48 GMT
content-type: application/problem+json
content-length: 144
boulder-requester: 125418885
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: 0004ltrfLhkm8dfPxzsY1vStOL7cnKVuiIAXq4ZLlxaEXKc

'
[Mon May 31 09:06:48 CEST 2021] code='400'
[Mon May 31 09:06:48 CEST 2021] original='{
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Unable to update challenge :: authorization must be pending",
  "status": 400
}'
[Mon May 31 09:06:48 CEST 2021] response='{
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Unable to update challenge :: authorization must be pending",
  "status": 400
}'
[Mon May 31 09:06:48 CEST 2021] onoff.MyDomain.com:Challenge error: {
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Unable to update challenge :: authorization must be pending",
  "status": 400
}
[Mon May 31 09:06:48 CEST 2021] pid
[Mon May 31 09:06:48 CEST 2021] No need to restore nginx, skip.
[Mon May 31 09:06:48 CEST 2021] _clearupdns
[Mon May 31 09:06:48 CEST 2021] dns_entries
[Mon May 31 09:06:48 CEST 2021] skip dns.
[Mon May 31 09:06:48 CEST 2021] _on_issue_err
[Mon May 31 09:06:48 CEST 2021] Please check log file for more details: /var/log/acme.sh.log
[Mon May 31 09:06:48 CEST 2021] _chk_vlist='onoff.MyDomain.com#ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE#https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A#http-01#/var/etc/acme-client/challenges,test.MyDomain.com#AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE#https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw#http-01#/var/etc/acme-client/challenges,onoff.MyDomain.com#ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE#https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A#http-01#/var/etc/acme-client/challenges,'
[Mon May 31 09:06:48 CEST 2021] start to deactivate authz
[Mon May 31 09:06:48 CEST 2021] Trigger domain validation.
[Mon May 31 09:06:48 CEST 2021] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:48 CEST 2021] _t_key_authz='ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE'
[Mon May 31 09:06:48 CEST 2021] _t_vtype
[Mon May 31 09:06:48 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:48 CEST 2021] payload='{}'
[Mon May 31 09:06:48 CEST 2021] Use cached jwk for file: /var/etc/acme-client/home/ca/acme-v02.api.letsencrypt.org/account.key
[Mon May 31 09:06:48 CEST 2021] Use _CACHED_NONCE='0004ltrfLhkm8dfPxzsY1vStOL7cnKVuiIAXq4ZLlxaEXKc'
[Mon May 31 09:06:48 CEST 2021] nonce='0004ltrfLhkm8dfPxzsY1vStOL7cnKVuiIAXq4ZLlxaEXKc'
[Mon May 31 09:06:48 CEST 2021] POST
[Mon May 31 09:06:48 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:48 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMDA0bHRyZkxoa204ZGZQeHpzWTF2U3RPTDdjbktWdWlJQVhxNFpMbHhhRVhLYyIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMTM1ODU0ODEyMjIvSEsxZTlBIiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjU0MTg4ODUifQ", "payload": "e30", "signature": "pd3Tx84ckMwaHURbdwZpRqScR9irxqwM35qk6n9Ar1yE09gekpOiknGgj8qtV_V6IKz010KoBGXGv9KgG2Sw_fXH-qnWlIFUQ5GVt3ScIa_Cw7ZikK6VZ0-uu8QbRc6mbEhiYY9s8tXFOzz1n4cIY3GkCTAlItay_3A0IcBAD-1bewq5IQ6QaPt7cKt92T7oBV0gGq5EzPllTM7NmYucnw3k-VtjjeggA44-r-gJLeoeWXN-v0P5megWOZbDdiO9cShuK5imxD0NibNkJMDGogDrc8wRoEJB91HapIAqjnjxNnmdKxh_e6jLMYIjgi2Cc0nafqUMgfOwiPkNnBKzsQ"}'
[Mon May 31 09:06:48 CEST 2021] _postContentType='application/jose+json'
[Mon May 31 09:06:48 CEST 2021] Http already initialized.
[Mon May 31 09:06:48 CEST 2021] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header  -L '
[Mon May 31 09:06:48 CEST 2021] _ret='0'
[Mon May 31 09:06:48 CEST 2021] responseHeaders='HTTP/2 400
server: nginx
date: Mon, 31 May 2021 07:06:48 GMT
content-type: application/problem+json
content-length: 144
boulder-requester: 125418885
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: 0104WcEcdHAJo3DxLg1GNYAm8Q6SCHhbRpTsZZlQw6m7HxA

'
[Mon May 31 09:06:48 CEST 2021] code='400'
[Mon May 31 09:06:48 CEST 2021] original='{
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Unable to update challenge :: authorization must be pending",
  "status": 400
}'
[Mon May 31 09:06:48 CEST 2021] response='{
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Unable to update challenge :: authorization must be pending",
  "status": 400
}'
[Mon May 31 09:06:49 CEST 2021] Trigger domain validation.
[Mon May 31 09:06:49 CEST 2021] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw'
[Mon May 31 09:06:49 CEST 2021] _t_key_authz='AanjCLp19VFJ9gjnjDyTd5k3n3b2he3YZyQzf8817lc.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE'
[Mon May 31 09:06:49 CEST 2021] _t_vtype
[Mon May 31 09:06:49 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw'
[Mon May 31 09:06:49 CEST 2021] payload='{}'
[Mon May 31 09:06:49 CEST 2021] Use cached jwk for file: /var/etc/acme-client/home/ca/acme-v02.api.letsencrypt.org/account.key
[Mon May 31 09:06:49 CEST 2021] Use _CACHED_NONCE='0104WcEcdHAJo3DxLg1GNYAm8Q6SCHhbRpTsZZlQw6m7HxA'
[Mon May 31 09:06:49 CEST 2021] nonce='0104WcEcdHAJo3DxLg1GNYAm8Q6SCHhbRpTsZZlQw6m7HxA'
[Mon May 31 09:06:49 CEST 2021] POST
[Mon May 31 09:06:49 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481223/UAjATw'
[Mon May 31 09:06:49 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMTA0V2NFY2RIQUpvM0R4TGcxR05ZQW04UTZTQ0hoYlJwVHNaWmxRdzZtN0h4QSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMTM1ODU0ODEyMjMvVUFqQVR3IiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjU0MTg4ODUifQ", "payload": "e30", "signature": "eT7XGc3JZtdA6I7W3vhAzdC9FsoeKmQK3iAgVAmTkdrvkOZBbOoGFx-TFSwuZFV51drdoujWOWg4cLNhek8KpyIBhNE8gqYNtXmu9Rng9pB2Oh_UjhUSBIyKgHM-8uDedC_xk8QtBFOVwH0Up2Axhb1uKybUOBEzNAu09Jtz0rx_11TJvA5wceZlVz_s-UGqntllyeLrOxSyGLoUt-ZVtxEdor6vRGRixP8lZXb_904LzYU5UwQfRdEKMbnrgmhm9OvabcYZ78wcduuBmXM6ad-DPmpezkMW3uNZ7lpYHIgSkplNEuMBdxhrGah66WAeAF8StMqrwh9Uw0JG2Ormcg"}'
[Mon May 31 09:06:49 CEST 2021] _postContentType='application/jose+json'
[Mon May 31 09:06:49 CEST 2021] Http already initialized.
[Mon May 31 09:06:49 CEST 2021] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header  -L '
[Mon May 31 09:06:49 CEST 2021] _ret='0'
[Mon May 31 09:06:49 CEST 2021] responseHeaders='HTTP/2 400
server: nginx
date: Mon, 31 May 2021 07:06:49 GMT
content-type: application/problem+json
content-length: 144
boulder-requester: 125418885
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: 0103j026LlJ54XJiiBxswK1Z88eckNX8QNFCtPNotnx_WEI

'
[Mon May 31 09:06:49 CEST 2021] code='400'
[Mon May 31 09:06:49 CEST 2021] original='{
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Unable to update challenge :: authorization must be pending",
  "status": 400
}'
[Mon May 31 09:06:49 CEST 2021] response='{
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Unable to update challenge :: authorization must be pending",
  "status": 400
}'
[Mon May 31 09:06:49 CEST 2021] Trigger domain validation.
[Mon May 31 09:06:49 CEST 2021] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:49 CEST 2021] _t_key_authz='ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM.XG9BNadU3IQlJmuVdABS35udjRYIEajzKlTtXgRhbbE'
[Mon May 31 09:06:49 CEST 2021] _t_vtype
[Mon May 31 09:06:49 CEST 2021] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:49 CEST 2021] payload='{}'
[Mon May 31 09:06:49 CEST 2021] Use cached jwk for file: /var/etc/acme-client/home/ca/acme-v02.api.letsencrypt.org/account.key
[Mon May 31 09:06:49 CEST 2021] Use _CACHED_NONCE='0103j026LlJ54XJiiBxswK1Z88eckNX8QNFCtPNotnx_WEI'
[Mon May 31 09:06:49 CEST 2021] nonce='0103j026LlJ54XJiiBxswK1Z88eckNX8QNFCtPNotnx_WEI'
[Mon May 31 09:06:49 CEST 2021] POST
[Mon May 31 09:06:49 CEST 2021] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/13585481222/HK1e9A'
[Mon May 31 09:06:49 CEST 2021] body='{"protected": "eyJub25jZSI6ICIwMTAzajAyNkxsSjU0WEppaUJ4c3dLMVo4OGVja05YOFFORkN0UE5vdG54X1dFSSIsICJ1cmwiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvY2hhbGwtdjMvMTM1ODU0ODEyMjIvSEsxZTlBIiwgImFsZyI6ICJSUzI1NiIsICJraWQiOiAiaHR0cHM6Ly9hY21lLXYwMi5hcGkubGV0c2VuY3J5cHQub3JnL2FjbWUvYWNjdC8xMjU0MTg4ODUifQ", "payload": "e30", "signature": "reLfYI8923zTjyIYJ5y8brHeWee5aphVa8rGZf0WTzctwNvUQd3_reBtf8X1v5SeWRrZyXv1v3nTtIpP2xmeFqNrakDh3rTHwpCycMkICY6hINjZ_Bjo1iNoxOF8fAaD6JkPoEuyGVKDGpWCe83AXVmJ2JIUgcoDZiU-v_aCGboquKO-7BIq5CmAMSN-7CMB0eQycvm3DY54joaTZgR7xzQV2pUIOtywB44hjB68qydqS0z4jspZKutKFZ_xlKPjkC4bpfrivaeJhDpsyA01eLB55QKkFFTI-jO4aX5mgEfBhK8hMgHYx922s1TKbH7tbUJIuJkDyIsehOPwh1WlqQ"}'
[Mon May 31 09:06:49 CEST 2021] _postContentType='application/jose+json'
[Mon May 31 09:06:49 CEST 2021] Http already initialized.
[Mon May 31 09:06:49 CEST 2021] _CURL='curl --silent --dump-header /var/etc/acme-client/home/http.header  -L '
[Mon May 31 09:06:50 CEST 2021] _ret='0'
[Mon May 31 09:06:50 CEST 2021] responseHeaders='HTTP/2 400
server: nginx
date: Mon, 31 May 2021 07:06:50 GMT
content-type: application/problem+json
content-length: 144
boulder-requester: 125418885
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: 0003_r62V6us4318aEoWqFlaCYd01c9OPlSSbICRoKh4DB0

'
[Mon May 31 09:06:50 CEST 2021] code='400'
[Mon May 31 09:06:50 CEST 2021] original='{
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Unable to update challenge :: authorization must be pending",
  "status": 400
}'
[Mon May 31 09:06:50 CEST 2021] response='{
  "type": "urn:ietf:params:acme:error:malformed",
  "detail": "Unable to update challenge :: authorization must be pending",
  "status": 400
}'


Vielen Dank für eure Unterstützung

Hinweis: Beim Aufruf von: http://onoff.myDomain.com/.well-known/acme-challenge/ZbCjfOo6LZ8AA12psVZHyYssloqLG_6QpZOwWLZI7UM
oder
http://onoff.myDomain.com/.well-known/acme-challenge/
bekomme ich 503 Service Unavailable ist das normal?
Text only | Text with Images