DNS problem while installing Let´s Encrypt
When I tryto add Let´s Encrypt to any domains in the last days I receive this:
1:51:30 PM WARN “Let’s Encrypt™” HTTP DCV error (MYDOMAIN.COM): 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: looking up A for MYDOMAIN.COM: DNSSEC: Bogus: validation failure <MYDOMAIN.COM. A IN>: no keys have a DS with algorithm RSASHA256 from 198.50.160.238 for key MYDOMAIN.COM. while building chain of trust; DNS problem: looking up AAAA for MYDOMAIN.COM: DNSSEC: Bogus: validation failure <MYDOMAIN.COM. AAAA IN>: no keys have a DS with algorithm RSASHA256 from 142.4.207.227 for key MYDOMAIN.COM. while building chain of trust)
1:51:32 PM ERROR “Let’s Encrypt™” DNS DCV error (MYDOMAIN.COM): 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: looking up TXT for _acme-challenge.MYDOMAIN.COM: DNSSEC: Bogus: validation failure <_acme-challenge.MYDOMAIN.COM. TXT IN>: no keys have a DS with algorithm RSASHA256 from 142.4.207.227 for key MYDOMAIN.COM. while building chain of trust)
ERROR “Let’s Encrypt™” DNS DCV error (*.MYDOMAIN.COM): 400 urn:ietf:params:acme:error:dns (There was a problem with a DNS query) (DNS problem: looking up TXT for _acme-challenge.MYDOMAIN.COM: DNSSEC: Bogus: validation failure <_acme-challenge.MYDOMAIN.COM. TXT IN>: no keys have a DS with algorithm RSASHA256 from 198.50.160.238 for key MYDOMAIN.COM. while building chain of trust)
I have
OS: Ubuntu v20.04.6 STANDARD kvm
cPanel Version: 118.0.13
How do I fix it?
Thanks,
Francisco
-
Hey there! This error indicates the client for that domain has DNSSEC enabled. They will likely need to disable that and then re-run AutoSSL to get things working.
More details on this issue can be found here: https://support.cpanel.net/hc/en-us/articles/360053667294-DNSSEC-failures-cause-AutoSSL-to-get-stuck
0
Please sign in to leave a comment.
Comments
1 comment