Setup ACME with Webroot Local Folder

  • I has setup ACME with Validation Method - Webroot Local Folder, and i stuck here

    may be anyone can help me or guide me regarding the case,

  • It's here :

    It should create a sub directory (in a sub directory) in the webroot .well-known/acme-challenge/ with the hash file.
    And that didn't work out.

    edit : btw : you have access to this webroot web server, right ? Go have a look yourself.
    The dirs are there ?
    Also : there are log files right ? Use them - see if 'pfSense' accessed your server. Dono how "http api" works, but I'm pretty sure there are server logs that can show you what happens.
    edit end.

    The setting you supplied you gave so "httpapi" should do it's job, couldn't fo it's job ?

    Anyway :
    This is not some funny line :

    It's actually needed when things don't work.

  • Hi @Gertjan thank you for you attantion,

    sorry i am forgot ti attach the log,
    this is log when i got today

    ([Fri Mar 27 10:34:39 WIB 2020] code='400'
    [Fri Mar 27 10:34:39 WIB 2020] original='{
    "type": "urn:ietf:params:acme:error:malformed",
    "detail": "Unable to update challenge :: authorization must be pending",
    "status": 400)

    Below is the response after i was click issue/renews button on pfsense


    May be anyone can teach me regarding the issue and resove the issue


  • Logs ?

    Open a console, SSH, or better SFTP and look in /tmp/acme/your-domain.tld - there is a dot log file.
    This one :

    Also :

    If I visit :

    I have a TLS error - as acme has :


    because the cert is expired since March 6.

    So, when the Letenscypt hits that site, it will bail out.

    I'm not using HAProxy myself, neither the acme webroot method.

    What about : pfsense haproxy acme ,

Log in to reply