Knowledge Base

Unable to issue Let’s Encrypt certificate in Plesk: Status 400 – Timeout during connect (likely firewall problem)

Symptoms

Unable to issue a certificate via the Let's Encrypt extension with the following error:

Could not issue an SSL/TLS certificate for example.com
Details
Could not issue a Let's Encrypt SSL/TLS certificate for example.com. Authorization for the domain failed. Details
Invalid response from https://acme-v02.api.letsencrypt.org/acme/authz-v3/321098646527. Details: Type: urn:ietf:params:acme:error:connection Status: 400 Detail: 203.0.113.2: Fetching http://example.com/.well-known/acme-challenge/kFBpRjpmUY0H8qwpYWlnmer8SbaJWTXEsv3ZuIsoCSg: Timeout during connect (likely firewall problem)
Port 80 is opened:

# nmap 203.0.113.2 -p80 -Pn
...
PORT STATE SERVICE
80/tcp open http
Local Firewall is enabled on Juggernaut and/or Imunify360 extensions side.
The domain has the A DNS record only (IPv4).

Cause

The connection is blocked on the firewall side, for example Imunify360 or Juggernaut Firewall.

Resolution

Consider disabling the Firewall on the Juggernaut and/or Imunify360 side.

Related Posts

DNS_PROBE_FINISHED_NXDOMAIN: What Is It And How To Fix The Problem

WordPress Firewall – Why Do You Need One?

Getting Started With Plesk Extensions & Tools

Knowledge Base

Can’t issue or reissue Let’s Encrypt certificate in Plesk: Timeout during connect (likely firewall problem) / Error getting validation data

Unable to issue a Let’s Encrypt certificate for domain with forwarding hosting type when nginx is not installed and/or disabled on the Plesk server

Unable to issue a Let’s Encrypt certificate: The token file is either unreadable or does not have the read permission

Unable to install Let’s Encrypt wildcard certificate: No TXT record found at _acme-challenge.example.com

Hosting Wiki