Hi,
I am trying to set up the Passbolt VM/OVA appliance for the first time but cannot get past the SSL certificate setup. I am using auto mode and have a DNS A record setup for the appliance. I have set up FW rules to allow the LetEncrypt server to connect back to to the appliance and I can see healthy TCP communications on the firewall when I begin the SSL setup process. However it fails with the following error:
Failed authorization procedure. passwords.sb.com (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http:/passwords.sb.com/.well-known/acme-challenge/ljx1tMhleAguoWcOuukwvfxho9CQVfpluUCnlzMenAQ [1.92.193.62]: “\r\n404 Not Found\r\n<body bgcolor=“white”>\r\n
404 Not Found
\r\n”
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: passwords.sb.com
Type: unauthorized
Detail: Invalid response from
http:/passwords.sb.com/.well-known/acme-challenge/ljx1tMhleAguoWcOuukwvfxho9CQVfpluUCnlzMenAQ
[1.92.193.62]: “\r\n404 Not
Found\r\n<body bgcolor=“white”>\r\n404
\r\n
Not Found
”To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. -
Your account credentials have been saved in your Certbot
configuration directory at /etc/letsencrypt. You should make a
secure backup of this folder now. This configuration directory will
also contain certificates and private keys obtained by Certbot so
making regular backups of this folder is ideal.
=============================================================================
WARNING: Unable to setup SSL using lets encrypt. Please check the install.log
=============================================================================
This seems to be an issue with permissions or the directly the LetsEncrypt server is trying to access.
I purchased the licence to Passbolt so I could run the VM/OVA and make the setup process as simple as possible so I am disappointed the initial setup is having issues such as this. If anyone can assist I would appreciate it. I should also mention that I have changed the IP/URL in the errors above as I did not want these details posted permanently on a publicly accessible website. I hope this doesn’t prevent someone assisting.
Thanks