SSL Renewal Issue for WHM Hostname
Hello everyone, I am having a recurring problem on different servers. Currently, the hostname certificate expired on 04/17, and it could not be renewed on any of the previous attempts before the expiration. I have already deleted the record of old certificates, but when I try to run the command suggested by cPanel "/usr/local/cpanel/bin/checkallsslcerts", it returns the following error in the console:
The system will check for the certificate for the “cpanel” service.
The system will attempt to replace the self-signed certificate for the “cpanel” service with a signed certificate from the “Let’s Encrypt™” provider.
The system will attempt to install a certificate for the “cpanel” service from the system SSL storage.
None of the certificates in the system SSL storage were acceptable to use for the “cpanel” service.
DNS query error (hostname.com/CAA): SERVFAIL (2)
The system will attempt to get a new certificate for the domains: sub.hostname.com, autoconfig.sub.hostname.com, autodiscover.sub.hostname.com, cpanel.sub.hostname.com, cpcalendars.sub.hostname.com, cpcontacts.sub.hostname.com, ipv6.sub.hostname.com, mail.sub.hostname.com, webdisk.sub.hostname.com, webmail.sub.hostname.com, whm.sub.hostname.com, www.sub.hostname.com
The system failed to validate domain control for the domain “autoconfig.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (no valid A records found for autoconfig.sub.hostname.com; no valid AAAA records found for autoconfig.sub.hostname.com)
The system failed to validate domain control for the domain “cpanel.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (no valid A records found for cpanel.sub.hostname.com; no valid AAAA records found for cpanel.sub.hostname.com)
The system failed to validate domain control for the domain “mail.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “www.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “cpcontacts.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (no valid A records found for cpcontacts.sub.hostname.com; no valid AAAA records found for cpcontacts.sub.hostname.com)
The system failed to validate domain control for the domain “whm.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (no valid A records found for whm.sub.hostname.com; no valid AAAA records found for whm.sub.hostname.com)
The system failed to validate domain control for the domain “cpcalendars.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (no valid A records found for cpcalendars.sub.hostname.com; no valid AAAA records found for cpcalendars.sub.hostname.com)
The system failed to validate domain control for the domain “webmail.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (no valid A records found for webmail.sub.hostname.com; no valid AAAA records found for webmail.sub.hostname.com)
The system failed to validate domain control for the domain “ipv6.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (no valid A records found for ipv6.sub.hostname.com; no valid AAAA records found for ipv6.sub.hostname.com)
The system failed to validate domain control for the domain “webdisk.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (no valid A records found for webdisk.sub.hostname.com; no valid AAAA records found for webdisk.sub.hostname.com)
The system failed to validate domain control for the domain “sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “autodiscover.sub.hostname.com” using the “HTTP” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (no valid A records found for autodiscover.sub.hostname.com; no valid AAAA records found for autodiscover.sub.hostname.com)
The system failed to validate domain control for the domain “mail.sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “www.sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “autoconfig.sub.hostname.com” using the “DNS” DCVmethod: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking upCAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “cpanel.sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAAfor hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “autodiscover.sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “whm.sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “cpcalendars.sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “cpcontacts.sub.hostname.com” using the “DNS” DCVmethod: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking upCAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “ipv6.sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “webdisk.sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
The system failed to validate domain control for the domain “webmail.sub.hostname.com” using the “DNS” DCV method: 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: SERVFAIL looking up CAA for hostname.com - the domain's nameservers may be malfunctioning)
“sub.hostname.com” failed DCV. Cannot proceed.
I have already checked all the DNS records, restarted services, and re-synchronized DNS on the server, and the console returns the correct IP. From multiple tests, the DNS settings are correct. Additionally, I have regenerated the terms from AutoSSL with Let's Encrypt, but the error continues.
Any idea what it might be or which direction I should take?
Thanks
-
Hey there! It sounds like you have done all of the normal troubleshooting steps so it would be best to submit a ticket to either us or your host so we can take a look.
0 -
Hello,
I have the similar problem with my server from today. Any solution for it?
0 -
Hoomaan - you would need to examine the logs to see if there are any helpful details there about why the renewal isn't happening.
0
Please sign in to leave a comment.
Comments
3 comments