Solved Timout on Transip lego for ssl?

Richard G

Richard G

Verified User
Joined
Jul 6, 2008
Messages
13,872
Location
Maastricht
I'm trying to get a wildcard SSL certificate on a VPS from somebody.
But Transip's nameserver does not want to work with me.
Code: 
2023/09/12 03:07:20 Could not obtain certificates:
        error: one or more domains had a problem:
[*.customerdomain.nl] time limit exceeded: last error: NS ns0.transip.net. returned NXDOMAIN for _acme-challenge.customerdomain.nl.
Certificate generation failed.

Now I generated a CAA record with Transip and then tried again, but same error occurred.

Anyone else using Transip's namesvers and having issues with lego? Or am I missing something?
 
Oke it seems that I found the cause of the problem. This is because the docs of Lego are very very summeray to say the least.
Talking about the benefit of having own nameservers.... glad I don't have to mess with this normally.

So it seems Lego can only be used via Evo skin. And then I need an accountname, presumably the accountname of Transip and a "private key path".
Now this last one is not explained anywhere. I thought these things were done automatically.

I've found an old thread about it in DA with the same question, never answered. So exactly what is that private key path or must one create that somehow?

I never used Lego before because we have our own nameservers this is for somebody else, learning curve for me. I thought this all went automatically.

Does the user need a .ssh private key or what is happening here? What am I missing. The docs could for sure be improved on this.
 
for external nameserver like ... cloudflare or other, it need integrate directly with API. so you need something like API Key, Private key ..etc.. that generate from external nameserver backend site.

But first thing go to evolution skin for wildcard ssl and you can see option for 3rd party nameserver currently supoort.
 
jamgames2 said:
But first thing go to evolution skin for wildcard ssl and you can see option for 3rd party nameserver currently supoort.
Click to expand...
Yes that is what I did. And Transip is supported.

Richard G said:
So it seems Lego can only be used via Evo skin. And then I need an accountname, presumably the accountname of Transip and a "private key path".
Now this last one is not explained anywhere. I thought these things were done automatically.
Click to expand...
But question was how do I get that Transip key or private key path I have to fill in there? Didn't find it there.
 
[Step 2]

Using the TransIP REST API | TransIP

Make advanced simple. Use the API to automatically manage your services at TransIP.
www.transip.eu www.transip.eu


maybe "private key path", it need to put key somewhere in the server.

Like "/home/{USER}/tranip_private_key" and use this path as setting for wildcard ssl.
 
That was what I was looking for, didn't know what to look for which key or what.

Thank you very much!
 
You must log in or register to reply here.
Back
Top