| De: |
"Steven Levine" <ecs-isp@2rosenthals.com> |
Encabezados Completos
Mensaje no decodificado |
| Asunto: |
Re: [eCS-ISP] Apache HTTPS |
| Fecha: |
Fri, 16 Aug 2024 15:31:06 -0700 |
| Para: |
""Dan Napier, Massimo Sangriso <massimo.sangriso@ecomstation.it>, CIH, CAC"" <ecs-isp@2rosenthals.com> |
|
|---|
In <list-10610493@2rosenthals.com>, on 08/16/24
at 10:59 AM, ""Dan Napier, MS, CIH, CAC"" <ecs-isp@2rosenthals.com>
said:
Hi,
>Here is as far as I get, I is asking for a TXT line in the dns server?
What's your uacme command line? I appears you neglected to point uacme at
your hook script.
> uacme.exe: challenge
>https://acme-v02.api.letsencrypt.org/acme/chall-v3/38943333 6946/-1Wx1w
>failed with status invalid
>uacme.exe: the server reported the following error:
>{
> "type": "urn:ietf:params:acme:error:dns",
> "detail": "DNS problem: NXDOMAIN looking up TXT for
>_acme-challenge.ns1.dnac ih.com - check that a DNS record exists for this
>domain",
> "status": 400
>}
>uacme.exe: failed to authorize order at
>https://acme-v02.api.letsencrypt.org/acm e/order/1887586636/295703974986
This is what happens if you run without a hook script. The Let's Encrypt
server tries to use dns-01 type challenge to verify that you are allowed
to issue the certificate. It is intend for systems that can update DNS
records on demand. This is not us, but we need to provide a hook script
and use the http-01 type challenge.
Steven
--
----------------------------------------------------------------------
"Steven Levine" <steve53@earthlink.net> Warp/DIY/BlueLion etc.
www.scoug.com www.arcanoae.com www.warpcave.com
----------------------------------------------------------------------
|