Symptoms
-
Unable to renew Let’s Encrypt with the following error:
PLESK_ERROR: The authorization token is not available at http://example.com/.well-known/acme-challenge/XXXXXXXXXXXXXXX. The token file ‘C:inetpubvhostsexample.comhttpdocs.well-knownacme-challengeXXXXXXXXXXXXXXX’ is either unreadable or does not have the read permission.
-
Authentication with password is enabled on the domain.
Cause
The Let’s encrypt token file is not reachable due to the enabled authentication for the domain.
Resolution
-
Connect to the server via RDP
Note: if direct RDP access to the server is not possible, contact server administrator for further assistance.
-
Click Start and open IIS Manager:
-
Navigate to IIS > Server name > Sites > example.com > Authentication:
-
Disable all kinds of the authentication:
Alternatively disable authentication only for Let’s Encrypt directory
.well-known
-
Navigate to IIS > Server name > Sites > example.com > .well-known > Authentication:
-
Disable all kinds of authentication using the above instructions.
-