Symptoms
-
Unable to renew the Let's Encrypt certificate for example.com with the following error message shown:
Unable to renew Let's Encrypt certificate: The authorization token is not available at https://example.com/.well-known/acme-challenge/
To resolve the issue, make sure that the token file can be downloaded via the above URL. -
Following error can be found in
%plesk_dir%adminlogsphp_error.log:ERR [extension/letsencrypt] Domain validation failed for example.com: Invalid response from https://acme-v02.api.letsencrypt.org/acme/authz-v3/4012635280.
Details:
Type: urn:ietf:params:acme:error:unauthorized
Status: 403
Detail: Invalid response from https://www.example.com/.well-known/acme-challenge/ [203.0.113.2]: "<!DOCTYPE html>rn<html lang="en">rn<head>rn <meta charset="utf-8">rn <meta http-equiv="x-ua-compatible" content="ie=edge">rn " -
Upon opening
https://example.com/.well-known/acme-challenge/in the browser the following message is shown:404 - File or directory not found.
- Physical path in IIS > Sites > example.com > Basic settings differs from the document root specified in the Plesk > Domains > example.com > Hosting Settings.
Cause
Site missconfiguration.
Resolution
- Connect to the server via RDP.
- Go to IIS > Sites > example.com > Basic settings and modify the physical path to the document root specified in Plesk > Domains > example.com > Hosting Settings.
with