New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
" The supported validation types are: http-01 , but you specified: dns-01" #4927
Comments
already done |
I encountered the same issue and resolved it by switching to LetsEncrypt. |
Came here to say the same. Changed to letsencrypt solved the issue. Something's up with Zerossl |
change server to letsencrypt |
Same with me, but my subdomain was doing ok with ZoreSSL while main domain wasn't. log> acme.sh --issue -d icansleepall.day --dns dns_cf --debug
[Sun 31 Dec 2023 01:32:22 AM EST] Using CA: https://acme.zerossl.com/v2/DV90
[Sun 31 Dec 2023 01:32:22 AM EST] Single domain='icansleepall.day'
[Sun 31 Dec 2023 01:32:22 AM EST] Getting domain auth token for each domain
[Sun 31 Dec 2023 01:32:25 AM EST] Getting webroot for domain='icansleepall.day'
[Sun 31 Dec 2023 01:32:25 AM EST] Error, can not get domain token "type":"dns-01","url":"https://acme.zerossl.com/v2/DV90/chall/a6UJNK58_h5IJK7bLBK5KQ","status":"invalid","error":{
[Sun 31 Dec 2023 01:32:25 AM EST] Please add '--debug' or '--log' to check more details.
[Sun 31 Dec 2023 01:32:25 AM EST] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Sun 31 Dec 2023 01:32:25 AM EST] The domain 'icansleepall.day' seems to have a ECC cert already, lets use ecc cert.
[Sun 31 Dec 2023 01:32:25 AM EST] Installing key to: /web/cert/icansleepall.day/key.pem
[Sun 31 Dec 2023 01:32:25 AM EST] Installing full chain to: /web/cert/icansleepall.day/cert.pem
[Sun 31 Dec 2023 01:32:25 AM EST] Run reload cmd: sudo service nginx force-reload
[Sun 31 Dec 2023 01:32:25 AM EST] Reload success |
Problem solved |
Just to chime in to folks who are looking to not completely delete and issue the certs anew, you appear to be able to modify the existing cert to reissue in-place. I followed these steps:
Take this with a grain of salt, but I had it work on two separate certs which were both combo primary & wildcard domain certs ( |
thks,it work |
I had a similar issue with two .net domains, but a .com domain did not. |
Is there a fix for this? I need to use ZeroSSL |
@saz-dmuk It's a temp error from zerossl server end. you can just try again later. |
Thanks, it is available. |
HTTP challenge doesn't support wildcards ,too bad |
Steps to reproduce
Based on the wiki of docker, I make a docker compose yaml
and with
docker compose up -d
it runs,but when I do
docker exec acme.sh acme.sh --issue --dns dns_cf -d example.com
, it outputs this(already doneacme.sh --register-account
)The expected output (install to host directly and exec same cmd) should be
Debug log
The text was updated successfully, but these errors were encountered: