Operating system: Centos
OS version: 8
My domain certificate has expired.
When I go to renew it I get the following error:
- The following errors were reported by the server:Domain: myvideoimage.com
Detail: Incorrect TXT record “v=DKIM1; k=rsa; t=s;
found at _acme-challenge.myvideoimage.comTo fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
- The following errors were reported by the server:Domain: www.myvideoimage.com
Detail: DNS problem: NXDOMAIN looking up TXT for
_acme-challenge.www.myvideoimage.com - check that a DNS record
exists for this domain
I found this documentation on the page: Challenge Types - Let’s Encrypt - Free SSL/TLS Certificates :
This is the most common challenge type today. Let’s Encrypt gives a token to your ACME client, and your ACME client puts a file on your web server at
http://<YOUR_DOMAIN>/.well-known/acme-challenge/<TOKEN> . That file contains the token, plus a thumbprint of your account key."
I checked on the server the folder /.well-known/acme-challenge/ exists but there is no TOKEN
I also found this wording:
“Our implementation of the HTTP-01 challenge follows redirects, up to 10 redirects deep. It only accepts redirects to “http:” or “https:”, and only to ports 80 or 443. It does not accept redirects to IP addresses. When redirected to an HTTPS URL, it does not validate certificates (since this challenge is intended to bootstrap valid certificates, it may encounter self-signed or expired certificates along the way).”
My DNS provider’s control panel contains recod @ A pointing to my server 188.8.131.52 Could this be the problem?