Keywords: Nginx - Virtual Machines - Technical issue - Secure Connections (SSL/HTTPS)
I have some issues setting up Certbot on Nginx reverse proxy 1.14 currently running as a vm. This proxy server points to the actual webserver sitting behind on another vm and that is an Apache WAMP Stack Windows server.
I tried to follow certain howtos online and did the following so far:
curl -Ls https://api.github.com/repos/xenolf/lego/releases/latest | grep browser_download_url | grep linux_amd64 | cut -d '"' -f 4 | wget -i -
tar xf lego_v3.2.0_linux_amd64.tar.gz
sudo mkdir -p /opt/bitnami/letsencrypt
sudo mv lego /opt/bitnami/letsencrypt/lego
sudo /opt/bitnami/ctlscript.sh stop
sudo /opt/bitnami/letsencrypt/lego --tls --email="email@example.com" --domains="www.xyzxyz.com" --path="/opt/bitnami/letsencrypt" run
(with the above line replacing the domain part to the actual domain name)
This is where I got stuck with error:
acme: Error -> One or more domains had a problem:
[www.xyzxyz.com] acme: error: 400 :: urn:ietf:params:acme:error:connection :: Error getting validation data, url:
My question is how can this above certificate authorization process verify and validate the domain when the proxy server is shutdown? Or write some validation file to the domain htdoc root when it is only the reverse proxy server? Is there a way to first request and obtain the validation files, then I manually install it on the WAMPstack windows apache server on a different vm, then turn on nginx reverse proxy to validate before getting the ssl/tls certificate?
Please kindly advise how I can solve this problem. Thanks a lot.