Mensaje archivado #845 de la Lista ecs-isp@2rosenthals.com anterior mensaje siguiente mensaje volver a la lista

De: "Steven Levine" <ecs-isp@2rosenthals.com> Encabezados Completos
Mensaje no decodificado
Asunto: Re: [eCS-ISP] Apache HTTPS
Fecha: Fri, 16 Aug 2024 15:31:06 -0700
Para: ""Dan Napier, Massimo Sangriso <massimo.sangriso@ecomstation.it>, CIH, CAC"" <ecs-isp@2rosenthals.com>

In <list-10610493@2rosenthals.com>, on 08/16/24
   at 10:59 AM, ""Dan Napier, MS, CIH, CAC"" <ecs-isp@2rosenthals.com>
said:


Hi,

>Here is as far as I get,  I is asking for a TXT line in the dns server?

What's your uacme command line?  I appears you neglected to point uacme at
your hook script.

> uacme.exe: challenge
>https://acme-v02.api.letsencrypt.org/acme/chall-v3/38943333 6946/-1Wx1w
>failed with status invalid
>uacme.exe: the server reported the following error:
>{
>    "type": "urn:ietf:params:acme:error:dns",
>    "detail": "DNS problem: NXDOMAIN looking up TXT for
>_acme-challenge.ns1.dnac ih.com - check that a DNS record exists for this
>domain",
>    "status": 400
>}
>uacme.exe: failed to authorize order at
>https://acme-v02.api.letsencrypt.org/acm e/order/1887586636/295703974986

This is what happens if you run without a hook script.  The Let's Encrypt
server tries to use dns-01 type challenge to verify that you are allowed
to issue the certificate.  It is intend for systems that can update DNS
records on demand.  This is not us, but we need to provide a hook script
and use the http-01 type challenge.

Steven

--
----------------------------------------------------------------------
"Steven Levine" <steve53@earthlink.net>  Warp/DIY/BlueLion etc.
www.scoug.com www.arcanoae.com www.warpcave.com
----------------------------------------------------------------------
Suscribirse: Todos, Compendio, Indice.
Desuscribirse
Correo al dueño de la Lista