Replies: 1 comment
-
|
posted in Q&A. seems this is not the correct category. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
hi all...
i couldn't find anything online with clear answer for the issue below...
it looks like domains with expired certificates keep sending back this below when an attempt is made to call acme with --renew. it's the second time it happens in about a month for 2 different domains that have expired certificates. renewing domains that are still within the expiration date is not an issue...
mydomain.com :Verify error:During secondary validation: no valid A records found for mydomain.com; no valid AAAA records found for mydomain.com
dig clearly returns the A record which hasn't changed in years...
in addition... i see the "challenge" files and their contents written under .well-known/acme-challenge/... so that part works. it's not that those are missing. currently have 5 - one for each attempt to renew the certificate.
i would like to know how to resolve the "secondary validation" issue...
thanks...
Steps to reproduce
acme.sh --debug --renew -d mydomain.com
Debug log
Wed May 29 17:18:33 UTC 2024] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/357072665122/_peAsQ'
[Wed May 29 17:18:33 UTC 2024] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L '
[Wed May 29 17:18:33 UTC 2024] _ret='0'
[Wed May 29 17:18:33 UTC 2024] code='200'
[Wed May 29 17:18:33 UTC 2024] mydomain.com:Verify error:During secondary validation: no valid A records found for mydomain.com; no valid AAAA records found for mydomain.com
[Wed May 29 17:18:33 UTC 2024] Debug: get token url.
Beta Was this translation helpful? Give feedback.
All reactions