AutoSSL / 404 errors

[ServerBiz]

We have just installed a brand new cPanel server on a virtual machine, I created a domain using WHMCS and tried to enable SSL. But for some reason it just keeps failing:

Log for the AutoSSL run for all users: Thursday, July 5, 2018 9:15:24 PM GMT+0200 (Let’s Encrypt™)
9:15:24 PM AutoSSL’s configured provider is “Let’s Encrypt™”.
Checking websites for “username” …
9:15:24 PM Checking “domain.tld” …
9:15:24 PM ERROR TLS Status: Defective
ERROR Defect: NO_SSL: No SSL certificate is installed.
WARN Local DCV error (domain.tld): The system queried for a temporary file at “[URL]http://domain.tld/.well-known/acme-challenge/V4T_KRENXRRL_7UVSPM2X7R6B3HM8MMP”[/URL], but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
WARN Local DCV error ([URL='http://www.domain.tld']www.domain.tld[/URL]): The system queried for a temporary file at “[URL]http://www.domain.tld/.well-known/acme-challenge/TELYN898V5-NV315I2L62BMMWV6W2POX”[/URL], but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
WARN Local DCV error (mail.domain.tld): The system queried for a temporary file at “[URL]http://mail.domain.tld/.well-known/acme-challenge/XP1OBABEQ4HQNP6DTPTUJAT108M7XP_P”[/URL], but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
WARN Local DCV error (webmail.domain.tld): The system queried for a temporary file at “[URL]http://webmail.domain.tld/.well-known/acme-challenge/HURDDGFNBZ79_YCNWEHAPT1280L-9050”[/URL], but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
WARN Local DCV error (cpanel.domain.tld): The system queried for a temporary file at “[URL]http://cpanel.domain.tld/.well-known/acme-challenge/UM8IZLTSRIU-GDJYTVCF8DWF7FA-YOMV”[/URL], but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
WARN Local DCV error (webdisk.domain.tld): The system queried for a temporary file at “[URL]http://webdisk.domain.tld/.well-known/acme-challenge/JWZPWZ43WOO-IVM44J31TH4CQ24ZRGA5”[/URL], but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
ERROR Impediment: TOTAL_DCV_FAILURE: Every domain failed DCV.
9:15:24 PM The system has completed the AutoSSL check for “username”.
The system has finished checking 1 user.

I had a look at the server and see the .well-known/acme-challenge directory is available on the server, but I can't see if a file is created there. The domain and all subdomains resolve to the correct IP-address.

At first we tried using the cPanel AutoSSL functionality, but that did not work so we decided to try Letsencrypt.

Where can I find the AutoSSL or Letsencrypt log files so I can determine what the problem is Or does anyone have an idea what could cause this?

 

[Infopro]

See if this post helps:
htaccess prevent cPanel AutoSSL to renew certificate

 

[ServerBiz]

See if this post helps:
htaccess prevent cPanel AutoSSL to renew certificate

That was the first thing I checked, "Global DCV passthrough" is enabled. (enabled by default) The strange thing is, this is a brand new v72.0.7 cPanel installation, the domain I tried to configure SSL for was the first domain we ever added to this server.

We are still in the testing phase and hope things will get better, we planned on moving away from Plesk... but if stuff like this doesn't work "out of the box" then we might have to stay with Plesk.

 

[cPanelLauren]

Hi @ServerBiz

You mentioned that this is a new server, how long has the domain been pointed to the server? In order for the DCV check to complete propagation must also be complete. Do you have any customizations like forced redirects to https in place?

The AutoSSL logs are located at WHM>>SSL/TLS>>Manage AutoSSL -> Logs you can also find them at /var/cpanel/logs/autossl/

The documentation on AutoSSL can be found here: Manage AutoSSL - Version 72 Documentation - cPanel Documentation

 

[ServerBiz]

You mentioned that this is a new server, how long has the domain been pointed to the server? In order for the DCV check to complete propagation must also be complete. Do you have any customizations like forced redirects to https in place?

I have checked if the domain has been properly propagated, everything resolves as it should. We don't have any customizations in place as far as I know. This is a new and clean cPanel installation.