The same script that was working till this morning is throwing Authorization Errors to me now as follows:
Authorization invalid for realdomainchangedforprivacyreasons.com: DNS problem: NXDOMAIN looking up TXT for
At C:\Program Files\WindowsPowerShell\Modules\Posh-ACME\3.6.0\Private\Wait-AuthValidation.ps1:34 char:17
- … throw “Authorization invalid for $($auth.fqdn): $message” …
- CategoryInfo : OperationStopped: (Authorization r…forprivacyreasons.com:String) , RuntimeException
- FullyQualifiedErrorId : Authorization invalid for realdomainchangedforprivacyreasons.com: DNS problem: NXDOMAIN looking up
TXT for _acme-challenge.realdomainchangedforprivacyreasons.com
I use Posh-ACME PowerShell (Install-Module Posh-ACME -Force)
I use this command:
New-PACertificate -Domain realdomainchangedforprivacyreasons.com -DnsPlugin Azure -PluginArgs $paPluginArgs -AcceptTOS -Verbos
the $paPluginArgs is created using azContext and all. I can post the relevant command that builds $paPluginArgs but I know it is irrelevant as I do see challenge TXT records created and deleted in my AzureDNS. which means Azure Token is good.
at some point which I don’t know when, I was switched to LE_PROD servers and after a few runs, it told me there was too many certs issued with that domain. switched to LE_STAGE and I don’t see that error, but I see this Authorization error above.
even for different hosts at that DNS suffix I still get this Authorization error.
what should I do? will the PROD throttling also affect STAGE servers? if not, what am I doing wrong?