Error in renewing SSL certificate using Let's Encrypt

I am getting the following error for SSL certificate installation

Saving debug log to /var/log/letsencrypt/letsencrypt.log
Renewing an existing certificate for amazingzoology.com and *.amazingzoology.com

Certbot failed to authenticate some domains (authenticator: manual). The Certificate Authority reported these problems:
Domain: amazingzoology.com
Type: unauthorized
Detail: Incorrect TXT record “_acme-challenge.amazingzoology.com” found at _acme-challenge.amazingzoology.com

Domain: amazingzoology.com
Type: unauthorized
Detail: Incorrect TXT record “_acme-challenge.amazingzoology.com” found at _acme-challenge.amazingzoology.com

Hint: The Certificate Authority failed to verify the DNS TXT records created by the --manual-auth-hook. Ensure that this hook is functioning correctly and that it waits a sufficient duration of time for DNS propagation. Refer to “certbot --help manual” and the Certbot User Guide

Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.

looks like you are requesting a wildcard certificate ? If so is Virtualmin hosting your dns ? , if not letsencrypt will not be able to find the location of the missing txt record.
Don’t request a wildcard certificate but add all the domains you want in the textbox

2 Likes

Thank you very much. This really helped.
I have been trying to request a wildcard certificate.
That was the issue.

You should probably tell Virtualmin it is not managing your DNS, by turning off that feature. It won’t try to do things that are impossible, if it knows it’s not able to modify your DNS. Virtualmin will instead show you a page of suggested DNS records you can copy to your DNS server(s).

2 Likes

This topic was automatically closed 8 days after the last reply. New replies are no longer allowed.