Can't renew SSL certificate

Y

YsarKain

New Member
Jun 27, 2024
2
0
1
I've been using the GoDaddy DNS plugin and it's been working fine for some time. But now I get an error in the console:

Loading ACME account details
Placing ACME order
Order URL: https://acme-v02.api.letsencrypt.org/acme/order/129865526/282156040087

Getting authorization details from 'https://acme-v02.api.letsencrypt.org/acme/authz-v3/369475186577'
The validation for <host.domain> is pending!
[Thu Jun 27 12:33:35 PDT 2024] Adding record
[Thu Jun 27 12:33:36 PDT 2024] TXT record 'REDACTED' for '_acme-challenge.<host.domain>', value wasn't set!
[Thu Jun 27 12:33:36 PDT 2024] Error add txt for domain:_acme-challenge.<host.domain>
TASK ERROR: command 'setpriv --reuid nobody --regid nogroup --clear-groups --reset-env -- /bin/bash /usr/share/proxmox-acme/proxmox-acme setup gd <host.domain>' failed: exit code 1
Click to expand...

I see this in the syslog:
Jun 27 12:33:33 <host> pvedaemon[1563130]: <root@pam> starting task UPID:<host>:0018FDE0:02995873:667DBE8D:acmenewcert::root@pam:
Jun 27 12:33:36 <host> pvedaemon[1637856]: command 'setpriv --reuid nobody --regid nogroup --clear-groups --reset-env -- /bin/bash /usr/share/proxmox-acme/proxmox-acme setup gd <host.domain>' failed: exit code 1
Jun 27 12:33:36 <host> pvedaemon[1563130]: <root@pam> end task UPID:<host>:0018FDE0:02995873:667DBE8D:acmenewcert::root@pam: command 'setpriv --reuid nobody --regid nogroup --clear-groups --reset-env -- /bin/bash /usr/share/proxmox-acme/proxmox-acme setup gd <host.domain>' failed: exit code 1
Click to expand...

I seem to recall having a similar problem with Nginx Proxy Manager when the certbot script was out of date. Is there some similar script to update for this?
 
encryptedserver said:
It is because godaddy no longer allows api to update dns records anymore. You need at least 50 domains with them before you can use the API again. Either host your own DNS server or move to cloudflare.
Click to expand...
I dont' think that is true. I am able to get a wildcard certificate from my OPNsense firewall with the API. From what I can see, the script creates a record for _acme-challenge.domain.com rather than _acme-challenge.host.domain.com at GoDaddy. I have a whole 2 domains with GoDaddy.

EDIT: Found other posts indicating it's 10 domains, but oddly the wildcard cert works with 2 domains..
 
Last edited:
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back