New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ZeroSSL no longer issuing/renewing certificates properly? #4046
Comments
please try ec-521 with every CA here: https://github.com/acmesh-official/acme.sh/wiki/Server And then let me know the result. Thanks |
won't that require a bunch of new accounts? also, can I change CA with renew or do I have to completely delete the folder and start over? |
whatever;
|
Solution: --server letsencrypt LE just works, while ZeroSSL doesn't and give no useful error. Even the status page is green, yet doesn't work... |
sometimes, zerossl fails with errors, but it just retries till timeout. You can use this website to check if there is any configuration error on your end: |
the letsencrypt CA always can return a useful error message to us. |
what would cause ZeroSSL to start returning errors when nothing has changed since the last time I successfully renewed a ZeroSSL certificate? I contacted ZeroSSL and they just told me that they've been having issues with their CA provider.
Can't sign up for letsencrypt because of the externalAccountBinding error lmao |
Is there a way for me to pause acme.sh or stop it from removing the DNS entries for me to use the site? |
What entries do you mean? |
the TXT records used by dns validation. |
there is no way to stop it yet. |
I'd recommend opening another issue for that unrelated problem @MindTooth |
This answer solved my problem. |
Would be nice if I could renew my certificate before it expires. I can't seem to renew ZeroSSL and I can't switch to any other server. What should I do? |
I just tried switching to So it seems you were correct that ZeroSSL just spins forever and never returns any error if anything goes wrong. That is incredibly annoying. Maybe you should add a troubleshooting guide |
Steps to reproduce
Try to renew an existing ZeroSSL certificate, that has successfully renewed before. I am using an EC-384 certificate
Debug log
I cannot provide full information due to its sensitive nature, but I can provide a censored version.
acme.sh
seems to be functioning perfectly and ZeroSSL is simply taking absolutely forever to process the certificate.Will likely switch to a different CA over this, please let me know if you know one that will sign EC-521 certificates.
Edit: Timed out after 600 checks
The text was updated successfully, but these errors were encountered: