For troubleshooting questions, please post in the following format:
Summary
Can’t get past SSL certificate generation, I am fairly new to Nginx hence why I chose Omnibus to set it up, but the setup cant seem to reach the domain.
Steps to reproduce
Latest version, setup ubuntu server LTS (latest release), went through tutorial, after running the apt installer for omnibus when it reaches the SSL certificate generation it errors out
Expected behavior
Not to error out
Observed behavior
It errors out with the below error
TASK [Generate SSL Certificate] **********************************************************************************************************************************************************************************************************************************************************************************************
fatal: [localhost]: FAILED! => {“changed”: true, “cmd”: [“certbot”, “certonly”, “–nginx”, “-d”, “johchat.online”, “-n”, “–agree-tos”, “–email”, “darkjake007@gmail.com”], “delta”: “0:00:17.805464”, “end”: “2024-02-09 07:17:51.842387”, “msg”: “non-zero return code”, “rc”: 1, “start”: “2024-02-09 07:17:34.036923”, “stderr”: “Saving debug log to /var/log/letsencrypt/letsencrypt.log\nSome challenges have failed.\nAsk for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.”, “stderr_lines”: [“Saving debug log to /var/log/letsencrypt/letsencrypt.log”, “Some challenges have failed.”, “Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.”], “stdout”: “Requesting a certificate for johchat.online\n\nCertbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:\n Domain: johchat.online\n Type: connection\n Detail: 27.96.192.65: Fetching JOH - Extreme Edition Timeout during connect (likely firewall problem)\n\nHint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.”, “stdout_lines”: [“Requesting a certificate for johchat.online”, “”, “Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:”, " Domain: johchat.online", " Type: connection", " Detail: 27.96.192.65: Fetching JOH - Extreme Edition Timeout during connect (likely firewall problem)", “”, “Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.”]}
What did you do exactly to resolve this problem? I am having the exact same issue.
user@server:~$ sudo dpkg-reconfigure mattermost-omnibus
Creating a data only backup before updating the platform
pg_dump: error: connection to database "mattermost" failed: connection to server at "localhost" (127.0.0.1), port 5432 failed: FATAL: password authentication failed for user "mmuser"
connection to server at "localhost" (127.0.0.1), port 5432 failed: FATAL: password authentication failed for user "mmuser"
ERROR: error running database backup command: exit status 1
Couldn't take a backup, skipping...
config file "/etc/mattermost/mmomni.yml" successfully saved
[WARNING]: No inventory was parsed, only implicit localhost is available
[WARNING]: provided hosts list is empty, only localhost is available. Note that the implicit localhost does not match
'all'
PLAY [localhost] *******************************************************************************************************
TASK [Gathering Facts] *************************************************************************************************
ok: [localhost]
TASK [Update debconf variables with json file values] ******************************************************************
ok: [localhost] => (item={'key': 'mattermost-omnibus/domain', 'value': 'example.domain.com'})
ok: [localhost] => (item={'key': 'mattermost-omnibus/email', 'value': 'email@domain.com'})
TASK [Ensure that NGINX is running] ************************************************************************************
ok: [localhost]
TASK [Check if certificate already exists] *****************************************************************************
ok: [localhost]
TASK [Generate SSL Certificate] ****************************************************************************************
fatal: [localhost]: FAILED! => {"changed": true, "cmd": ["certbot", "certonly", "--nginx", "-d", "example.domain.com", "-n", "--agree-tos", "--email", "email@domain.com"], "delta": "0:00:14.926553", "end": "2024-09-05 03:44:27.609331", "msg": "non-zero return code", "rc": 1, "start": "2024-09-05 03:44:12.682778", "stderr": "Saving debug log to /var/log/letsencrypt/letsencrypt.log\nSome challenges have failed.\nAsk for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.", "stderr_lines": ["Saving debug log to /var/log/letsencrypt/letsencrypt.log", "Some challenges have failed.", "Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details."], "stdout": "Requesting a certificate for example.domain.com\n\nCertbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:\n Domain: example.domain.com\n Type: connection\n Detail: 12.12.123.123: Fetching http://example.domain.com/.well-known/acme-challenge/gynGkRyX-IvpHug6dSW6w4GsWslPCD_qvm9sgC0GGx0: Timeout during connect (likely firewall problem)\n\nHint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.", "stdout_lines": ["Requesting a certificate for example.domain.com", "", "Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:", " Domain: example.domain.com", " Type: connection", " Detail: 12.12.123.123: Fetching http://example.domain.com/.well-known/acme-challenge/gynGkRyX-IvpHug6dSW6w4GsWslPCD_qvm9sgC0GGx0: Timeout during connect (likely firewall problem)", "", "Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet."]}
PLAY RECAP *************************************************************************************************************
localhost : ok=4 changed=0 unreachable=0 failed=1 skipped=0 rescued=0 ignored=0
ERROR: error running reconfigure: exit status 2
###############################################################
# Omnibus configuration failed. #
# #
# Please run "dpkg-reconfigure mattermost-omnibus" to #
# try again or join the Mattermost Community for help at #
# https://mattermost.com/pl/default-ask-mattermost-community/ #
###############################################################
