Comments (10)
Please upgrade to the latest code and try again first. Maybe it's already fixed. acme.sh --upgrade
If it's still not working, please provide the log with --debug 2
, otherwise, nobody can help you.
from acme.sh.
Please upgrade to the latest code and try again first. Maybe it's already fixed.
acme.sh --upgrade
If it's still not working, please provide the log with--debug 2
, otherwise, nobody can help you.
I'm on the latest version, and here is the relevant snippet of --debug 2:
from acme.sh.
I encountered the same problem
from acme.sh.
It's not a bug. GoDaddy changed their API so only customers with 10+ domains can use it, speak to their support.
from acme.sh.
It's not a bug. GoDaddy changed their API so only customers with 10+ domains can use it, speak to their support.
I understand this from what I've read, but why is it only like this for subdomain wildcards and not the regular domain?
from acme.sh.
@Tom-CDA my first guess would be cached validation for the domain variation that's working (cached on the CA side, and it will expire), I've not heard of the API working only for the primary domain _acme-challenge record, I guess it's possible but I doubt it.
from acme.sh.
Having similar issues. Weird thing is tho ...when using the Let's Encrypt staging ACME v2 server it's working just fine.
from acme.sh.
@FlexServ the question there would be are you doing any TXT updates at all when it works? Most likely your previous validations against staging are cached by LE. I believe they cache successful validations for 30 days, so it's possible for you to fire off a new order and complete it without needing to complete any domain validations. Until they expire.
from acme.sh.
I got a reply from godaddy:
We have recently updated the account requirements to access parts of our production Domains API. As part of this update, access to these APIs are now limited:
Availability API: Limited to accounts with 50 or more domains
Management and DNS APIs: Limited to accounts with 10 or more domains and/or an active Premium Discount Domain Club plan.
If you are working on the SSL part then it will allow you to add the txt record if you are using ACME. It needs to be _acme-challenge. Our system also no longer allows sub domains to be used with the API.
Please note that this does not affect your access to any of our OTE APIs.
So yes, I don't know if I'm affected by the DNS API thing yet (probably), but most likely the "no longer allows sub domains to be used by".
So I will close this issue because obviously not acme.sh's fault, and time to switch dns hosting. Thanks for the help <3
from acme.sh.
@Tom-CDA that's interesting! It does sounds like they will allow it to update _acme-challenge
but not _acme-challenge.www
etc, if that's the case you may be able to at least get a wildcard. Unfortunately for me I need the option to list zones via the API, which probably won't work. They really need to update their documentation.
from acme.sh.
Related Issues (20)
- Invalid status, *.yyzb12312.com:Verify error detail:No TXT record found at _acme-challenge.yyzb12312.com HOT 3
- Unable to find certificate: "" and is not set. HOT 5
- deploy error synology_dsm Failed to authenticate with error: 102. HOT 17
- why --standalone not use? HOT 6
- Dynamic variables names for _readaccountconf_mutable and _saveaccountconf_mutable HOT 1
- socat error HOT 3
- Sign error, wrong status:Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 139 HOT 4
- Deploy synology_dsm.sh - Error 109 (was succeed 2 months ago) HOT 8
- Bug reports for the myLoc/webtropia DNS API HOT 3
- Multi certs per cron job or vice-versa HOT 1
- Cron job for certificate renewal HOT 1
- Add parameters to generate certificates in【.pem】 format HOT 1
- github request always triggered during `--install`, even when AUTO_UPGRADE is off HOT 1
- Only RSA or EC key is supported HOT 3
- error ecc key name: prime256v1 HOT 3
- i cant seem to get a certificate HOT 3
- _send_signed_request() nonce bad error checking, might lead to generate empty certificates HOT 2
- _BASE64_ENCODED_CFGS variable HOT 3
- dns_myloc API hook is missing in the list of the dns-apis provider list at: /root/.acme.sh/dns_api. Automated cert renewal is therefore not possible! HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from acme.sh.