DNS-01 challenge Non-wildcard issuer

Does the DNS-01 challange work on non-wildcard domains? I have been having issues with getting a certificate for say, example-1.com, but no issues for *.example-2.com using DNS challenge.

I am using porkbun and previously i was using namecheap. I had the same issue with both.

Aug  1 16:47:25 10.45.80.81 2023/08/01 20:47:25.888     INFO    http.acme_client        trying to solve challenge       {"identifier": "example-1.com", "challenge_type": "dns-01", "ca": "https://acme.zerossl.com/v2/DV90"}
Aug  1 16:47:26 10.45.80.81 2023/08/01 20:47:26.382     ERROR   http.acme_client        cleaning up solver      {"identifier": "example-1.com", "challenge_type": "dns-01", "error": "no memory of presenting a DNS record for \"_acme-challenge.example-1.com\" (usually OK if presenting also failed)"}
Aug  1 16:47:27 10.45.80.81 2023/08/01 20:47:27.164     DEBUG   http.acme_client        http request    {"method": "POST", "url": "https://acme.zerossl.com/v2/DV90/authz/72cctqYF5KNMIjo5mLWLjg", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.6.4 CertMagic acmez (linux; arm64)"]}, "response_headers": {"Access-Control-Allow-Origin":["*"],"Cache-Control":["max-age=0, no-cache, no-store"],"Content-Length":["123"],"Content-Type":["application/json"],"Date":["Tue, 01 Aug 2023 20:47:27 GMT"],"Link":["<https://acme.zerossl.com/v2/DV90>;rel=\"index\""],"Replay-Nonce":["SjAIeiP9axL507BTDmDKQS7ndNFHYT56880xcC0cKTs"],"Retry-After":["86400"],"Server":["nginx"],"Strict-Transport-Security":["max-age=15724800; includeSubDomains"]}, "status_code": 200}
Aug  1 16:47:27 10.45.80.81 2023/08/01 20:47:27.164     ERROR   tls.obtain      could not get certificate from issuer   {"identifier": "example-1.com", "issuer": "acme.zerossl.com-v2-DV90", "error": "[example-1.com] solving challenges: presenting for challenge: adding temporary record for zone \"cloud.\": could not create record:({0x400045c780 LJYusAtY8s8g3LbQwvOlaVm8MKtwRAfQFcw-fMHymcc _acme-challenge.mcgee 600 TXT}) in Zone: cloud; Status: 400; Body: {\"status\":\"ERROR\",\"message\":\"Invalid domain.\"} (order=https://acme.zerossl.com/v2/DV90/order/C4ck3xjeWavX6l7A9sqtPQ) (ca=https://acme.zerossl.com/v2/DV90)"}
Aug  1 16:47:27 10.45.80.81 2023/08/01 20:47:27.165     DEBUG   events  event   {"name": "cert_failed", "id": "9ed8d4a8-0d51-4334-be39-1095ce11c2ba", "origin": "tls", "data": {"error":{},"identifier":"example-1.com","issuers":["acme-v02.api.letsencrypt.org-directory","acme.zerossl.com-v2-DV90"],"renewal":false}}
Aug  1 16:47:27 10.45.80.81 2023/08/01 20:47:27.165     ERROR   tls.obtain      will retry      {"error": "[example-1.com] Obtain: [example-1.com] solving challenges: presenting for challenge: adding temporary record for zone \"cloud.\": could not create record:({0x400045c780 LJYusAtY8s8g3LbQwvOlaVm8MKtwRAfQFcw-fMHymcc _acme-challenge.mcgee 600 TXT}) in Zone: cloud; Status: 400; Body: {\"status\":\"ERROR\",\"message\":\"Invalid domain.\"} (order=https://acme.zerossl.com/v2/DV90/order/C4ck3xjeWavX6l7A9sqtPQ) (ca=https://acme.zerossl.com/v2/DV90)", "attempt": 4, "retrying_in": 300, "elapsed": 447.786581133, "max_duration": 2592000}

Please fill out the help topic template as per the forum rules. It’s impossible to help without seeing your config, version, etc.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.