Richard G
Verified User
I know them, seen the series here and I like it.
LetsEncrypt Issue
- Thread starter WebHostingUK
- Start date
Richard G
Verified User
@glio: There was an update to 1.1.32 today. You might update and try again.
Maybe it's fixed.
Maybe it's fixed.
This is not releated to the problems some users has in this thread, but I would like to point out that it is a good idea to monitor Let's Encrypt status page at https://letsencrypt.status.io - currently there is a active issue from October 3 wich is still not resolved, wich could give timeouts. Look under the heading "Timeouts Accessing Some API Endpoints"
Richard G
Verified User
@Ditto: Thank you, good tip! This explains some timeouts I was having on other domains. I didn't care because they worked a day later. But it's always good to have a place to check things.
@glio: You might consider sending in a ticket about that issue.
@glio: You might consider sending in a ticket about that issue.
Richard G
Verified User
Only @Smtalk can answer that I guess. I presume there is a good reason for changing the way this works, maybe the old way will be deprecated in the future or it's done to prevent running in to limits or other error notices? I don't know.
If it could be done it would be nice indeed.
If it could be done it would be nice indeed.
ikkeben
Verified User
Even with 1.1.34 ?
https://files.directadmin.com/services/all/letsencrypt/
And take care if this in old versions then using ....
https://community.letsencrypt.org/t/acme-v2-scheduled-deprecation-of-unauthenticated-resource-gets/74380
Last edited:
crenet
Verified User
- Joined
- Sep 23, 2019
- Messages
- 92
Hi,
This is my first default/basic DA server setup, using the default setup and getting a lot of issues to make things working.
I am troubleshooting in the last 7 days, already post in other forum categories and I did not get any help.
Some time ago I use DA and DirectAdmin forum was very active and helpful.
I really hope that somebody could help me with this DA issue with Let's Encrypt wildcard limitation.
I tried to install Let's Encrypt wildcard but I get an error because DA script do not allow me to add the LE activation record on my external DNS.
This seem to be a DA limitation because PLESK allow users to set the LE activation record for wildcard on external DNS server.
Plesk guide
https://docs.plesk.com/en-US/obsidia...encrypt.79603/
"Whether the Let’s Encrypt extension adds the DNS record automatically or you do it manually, it can take some time before it propagates. We recommend that you check that the DNS record was added before going to the next step. Here is how you can do it:"
So how can DA users know which TXT record should we add for complete certificate validation ?
This feature exist so when will it be fixed to allow users to add the record in the external DNS server ?
Thanks
This is my first default/basic DA server setup, using the default setup and getting a lot of issues to make things working.
I am troubleshooting in the last 7 days, already post in other forum categories and I did not get any help.
Some time ago I use DA and DirectAdmin forum was very active and helpful.
I really hope that somebody could help me with this DA issue with Let's Encrypt wildcard limitation.
I tried to install Let's Encrypt wildcard but I get an error because DA script do not allow me to add the LE activation record on my external DNS.
This seem to be a DA limitation because PLESK allow users to set the LE activation record for wildcard on external DNS server.
Plesk guide
https://docs.plesk.com/en-US/obsidia...encrypt.79603/
"Whether the Let’s Encrypt extension adds the DNS record automatically or you do it manually, it can take some time before it propagates. We recommend that you check that the DNS record was added before going to the next step. Here is how you can do it:"
So how can DA users know which TXT record should we add for complete certificate validation ?
This feature exist so when will it be fixed to allow users to add the record in the external DNS server ?
Thanks
crenet
Verified User
- Joined
- Sep 23, 2019
- Messages
- 92
Hi Martynas,Let's Encrypt certificates auto-renew themselves. Are you going to re-add these DNS records manually every 60 days? I wouldn't call this auto-renewal though, as it'd require manual action
Plesk is doing why DirectAdmin do not allow Lets Encrypt wildcard certificates when using external DNS servers ?
This seems not good because the way DA is doing it I can not get LE wildcard certificates into DirectAdmin.
It should be available, just change the script and allow the user to see the activation record that he need to add in external DNS with a confirmation button to continue the script.
Do not seem very complicated and will allow to work with both local DNS and external DNS.
Seems logical, I did not expect to see this limitation on DirectAdmin because DA is very active in implementing new features.
Doing this way will limit the use of LE wildcard certificates for local DNS that is a no sense because awe all now that its better to get a external DNS service.
Thanks