Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unable to obtain wildcard certificate with DNS challenge using Go Daddy #1113

Closed
floatingpurr opened this issue Apr 17, 2020 · 0 comments · Fixed by #1114
Closed

Unable to obtain wildcard certificate with DNS challenge using Go Daddy #1113

floatingpurr opened this issue Apr 17, 2020 · 0 comments · Fixed by #1114
Assignees
@ldez
Labels
area/dnsprovider bug

Comments

@floatingpurr
Copy link

Hello there. I'm opening up this issue coming from this one from Traefik: traefik/traefik#6686

When I try to get a wildcard certificate with GoDaddy, I get the following error:

traefik | time="2020-04-16T10:24:59Z" level=error msg="Unable to obtain ACME certificate for domains "example.org,*.example.org" : unable to generate a certificate for the domains [example.org *.example.org]: acme: Error -> One or more domains had a problem:\n[example.org] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: During secondary validation: Incorrect TXT record "null" found at _acme-challenge.example.org, url: \n" providerName=wildcard-godaddy.acme

It seems like it is a lego problem with GoDaddy. Please find here below the traefik log related to this lego problem:

traefik    | time="2020-04-16T10:23:10Z" level=debug msg="legolog: [INFO] [example.org, *.example.org] acme: Obtaining bundled SAN certificate"
traefik    | time="2020-04-16T10:23:10Z" level=debug msg="legolog: [INFO] [*.example.org] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/<id1>"
traefik    | time="2020-04-16T10:23:10Z" level=debug msg="legolog: [INFO] [example.org] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/<id2>"
traefik    | time="2020-04-16T10:23:10Z" level=debug msg="legolog: [INFO] [*.example.org] acme: use dns-01 solver"
traefik    | time="2020-04-16T10:23:10Z" level=debug msg="legolog: [INFO] [example.org] acme: Could not find solver for: tls-alpn-01"
traefik    | time="2020-04-16T10:23:10Z" level=debug msg="legolog: [INFO] [example.org] acme: Could not find solver for: http-01"
traefik    | time="2020-04-16T10:23:10Z" level=debug msg="legolog: [INFO] [example.org] acme: use dns-01 solver"
traefik    | time="2020-04-16T10:23:10Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Preparing to solve DNS-01"
traefik    | time="2020-04-16T10:23:11Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Trying to solve DNS-01"
traefik    | time="2020-04-16T10:23:11Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Checking DNS record propagation using [127.0.0.11:53]"
traefik    | time="2020-04-16T10:23:11Z" level=debug msg="legolog: [INFO] Wait for propagation [timeout: 2m0s, interval: 2s]"
traefik    | time="2020-04-16T10:23:11Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:13Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:15Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:17Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:19Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:21Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:23Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:25Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:27Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:29Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:31Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:33Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:23:43Z" level=debug msg="legolog: [INFO] [*.example.org] The server validated our request"
traefik    | time="2020-04-16T10:23:43Z" level=debug msg="legolog: [INFO] [*.example.org] acme: Cleaning DNS-01 challenge"
traefik    | time="2020-04-16T10:23:44Z" level=debug msg="legolog: [INFO] sequence: wait for 1m0s"
traefik    | time="2020-04-16T10:24:44Z" level=debug msg="legolog: [INFO] [example.org] acme: Preparing to solve DNS-01"
traefik    | time="2020-04-16T10:24:45Z" level=debug msg="legolog: [INFO] [example.org] acme: Trying to solve DNS-01"
traefik    | time="2020-04-16T10:24:45Z" level=debug msg="legolog: [INFO] [example.org] acme: Checking DNS record propagation using [127.0.0.11:53]"
traefik    | time="2020-04-16T10:24:45Z" level=debug msg="legolog: [INFO] Wait for propagation [timeout: 2m0s, interval: 2s]"
traefik    | time="2020-04-16T10:24:45Z" level=debug msg="legolog: [INFO] [example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:24:47Z" level=debug msg="legolog: [INFO] [example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:24:49Z" level=debug msg="legolog: [INFO] [example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:24:51Z" level=debug msg="legolog: [INFO] [example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:24:53Z" level=debug msg="legolog: [INFO] [example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:24:55Z" level=debug msg="legolog: [INFO] [example.org] acme: Waiting for DNS record propagation."
traefik    | time="2020-04-16T10:24:58Z" level=debug msg="legolog: [INFO] [example.org] acme: Cleaning DNS-01 challenge"
traefik    | time="2020-04-16T10:24:58Z" level=debug msg="legolog: [INFO] Skipping deactivating of valid auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/<id1>"
traefik    | time="2020-04-16T10:24:58Z" level=debug msg="legolog: [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/<id2>"
traefik    | time="2020-04-16T10:24:59Z" level=debug msg="legolog: [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/<id2>"
traefik    | time="2020-04-16T10:24:59Z" level=error msg="Unable to obtain ACME certificate for domains \"example.org,*.example.org\" : unable to generate a certificate for the domains [example.org *.example.org]: acme: Error -> One or more domains had a problem:\n[example.org] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: During secondary validation: Incorrect TXT record \"null\" found at _acme-challenge.example.org, url: \n" providerName=wildcard-godaddy.acme
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ldez ldez

Labels
area/dnsprovider bug
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

godaddy: allow parallel solve. ldez/lego
2 participants
@ldez @floatingpurr