1. Alexander Member

    Error during automated certificate renew

    Topic geplaatst op: 11-08-2020 om 17:16

    Voor verschillende domeinen krijg ik de melding dat ik de SSL certificaten niet kan vernieuwen.
    Hierover krijg ik telkens e-mails en dit is al een paar weken zo volgens mij.
    Kan hier een oplossing voor komen?
    Ik zit op vserver1

    Reageer
  2. Alexander Member
    Reactie geplaatst op: 11-08-2020 om 17:18

    Dit is trouwens wat ik terug vind in direct admin:

    Found wildcard domain name and http challenge type, switching to dns-01 validation.
    2020/08/11 03:07:01 [INFO] [*.domein.nl, domein.nl] acme: Obtaining SAN certificate
    2020/08/11 03:07:02 [INFO] [*.domein.nl] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/6447652398
    2020/08/11 03:07:02 [INFO] [domein.nl] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/6447652399
    2020/08/11 03:07:02 [INFO] [*.domein.nl] acme: use dns-01 solver
    2020/08/11 03:07:02 [INFO] [domein.nl] acme: Could not find solver for: tls-alpn-01
    2020/08/11 03:07:02 [INFO] [domein.nl] acme: Could not find solver for: http-01
    2020/08/11 03:07:02 [INFO] [domein.nl] acme: use dns-01 solver
    2020/08/11 03:07:02 [INFO] [*.domein.nl] acme: Preparing to solve DNS-01
    2020/08/11 03:07:02 [INFO] [*.domein.nl] acme: Trying to solve DNS-01
    2020/08/11 03:07:02 [INFO] [*.domein.nl] acme: Checking DNS record propagation using [[2001:4860:4860::8888]:53]
    2020/08/11 03:07:04 [INFO] Wait for propagation [timeout: 1m0s, interval: 2s]
    2020/08/11 03:07:16 [INFO] [*.domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:07:28 [INFO] [*.domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:07:40 [INFO] [*.domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:07:54 [INFO] [*.domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:08:06 [INFO] [*.domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:08:08 [INFO] [*.domein.nl] acme: Cleaning DNS-01 challenge
    2020/08/11 03:08:08 [INFO] [domein.nl] acme: Preparing to solve DNS-01
    2020/08/11 03:08:09 [INFO] [domein.nl] acme: Trying to solve DNS-01
    2020/08/11 03:08:09 [INFO] [domein.nl] acme: Checking DNS record propagation using [[2001:4860:4860::8888]:53]
    2020/08/11 03:08:11 [INFO] Wait for propagation [timeout: 1m0s, interval: 2s]
    2020/08/11 03:08:21 [INFO] [domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:08:33 [INFO] [domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:08:45 [INFO] [domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:08:57 [INFO] [domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:09:09 [INFO] [domein.nl] acme: Waiting for DNS record propagation.
    2020/08/11 03:09:11 [INFO] [domein.nl] acme: Cleaning DNS-01 challenge
    2020/08/11 03:09:11 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/6447652398
    2020/08/11 03:09:12 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/6447652399
    2020/08/11 03:09:12 Could not obtain certificates:
    error: one or more domains had a problem:
    [*.domein.nl] time limit exceeded: last error: read udp 185.182.56.115:34734->159.253.0.132:53: i/o timeout
    [domein.nl] time limit exceeded: last error: read udp 185.182.56.115:49068->159.253.0.132:53: i/o timeout
    Certificate generation failed.
    <br>
    This domain does not have DNSSEC active. Skipping TLSA.
    <br>

    Vond u dit antwoord nuttig?

  3. Johannes Member
    Reactie geplaatst op: 14-08-2020 om 01:35

    Zeer benieuwd, heb dit ook sinds een paar weken. Zowel voor domeinen bij Version als ook elders, ca 2 - 3 weken begonnen. Eerst bij 1 domein, toen 2 en nu ondertussen 7 of 8. Elke dag weer dezelfde melding voor dezelfde domeinen

    Vond u dit antwoord nuttig?

  4. Alexander Member
    Reactie geplaatst op: 22-08-2020 om 22:52

    Nog steeds geen reactie hierover ontvangen, inmiddels ook domeinen die nu terug gezet moeten gaan worden naar HTTP...

    Vond u dit antwoord nuttig?

  5. Fabien Versio medewerker
    Reactie geplaatst op: 23-08-2020 om 13:36

    Hallo, je mag dit melden via support@versio.nl zodat dit nagekeken kan worden. Via het forum kan dit zo niet onderzocht worden.

    Vond u dit antwoord nuttig?