Before continuing, verify the record is deployed

#1

I want to generate ssl for only subdomain.
I don’t have shell access to server, so trying to generate certificates on my pc
the main issue I am facing is to "verify the record is deployed."
My domain is:


I ran this command:
sudo certbot -d members.springlakegolfclub.net --manual -i apache --preferred-challenges dns certonly
It produced this output:
Please deploy a DNS TXT record under the name
_acme-challenge.members.springlakegolfclub.net with the following value:

BiR_LU8Oc_bbHtaVMzVqO1uK1yvM8IJ-JpSDnZl51v8

Before continuing, verify the record is deployed.


Press Enter to Continue
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. members.springlakegolfclub.net (dns-01): urn:ietf:params:acme:error:dns :: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.members.springlakegolfclub.net

IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: members.springlakegolfclub.net
    Type: None
    Detail: DNS problem: NXDOMAIN looking up TXT for
    _acme-challenge.members.springlakegolfclub.net

My web server is (include version):
Server version: Apache/2.4.18 (Ubuntu)
Server built: 2019-04-03T13:34:47

The operating system my web server runs on is (include version):
ubuntu 16.04
My hosting provider, if applicable, is:
webflow
I can login to a root shell on my machine (yes or no, or I don’t know):
no
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
webflow
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
certbot 0.31.0

#2

Did you actually do what is requested of you? As in, did you actually add that value to the named DNS record? Or is that part unclear to you?

#3

Hi @Faisal-nfl

you can use online tools to check if the correct TXT entry is visible.

Now there is no such entry ( https://check-your-website.server-daten.de/?q=members.springlakegolfclub.net#txt ):

9. TXT - Entries

Domainname TXT Entry Status ∑ Queries ∑ Timeout
members.springlakegolfclub.net ok 1 0
_acme-challenge.members.springlakegolfclub.net Name Error - The domain name does not exist 1 0
_acme-challenge.members.springlakegolfclub.net.members.springlakegolfclub.net Name Error - The domain name does not exist 1 0

If you create a correct entry, there should be a message

looks good

#4

yes I did add that value

#5

thanks a lot, let me try

#6

Though, I actually have this entry,
any idea what am I doing wrong?

#7

Where did you create that entry?

I can’t see it ( https://check-your-website.server-daten.de/?q=members.springlakegolfclub.net#txt ):

9. TXT - Entries

Domainname TXT Entry Status ∑ Queries ∑ Timeout
members.springlakegolfclub.net ok 1 0
_acme-challenge.members.springlakegolfclub.net Name Error - The domain name does not exist 1 0
_acme-challenge.members.springlakegolfclub.net.members.springlakegolfclub.net Name Error - The domain name does not exist 1 0

This

ns03.domaincontrol.com

is one of your nameservers.

PS: What’s “webflow”? Perhaps that’s only a local configuration. But you have to do that in the menu of your domain provider.

#8

just noticed that webflow is different and has nothing to do with sub domain.
I added txt record at godday.

1 Like
#9

There is nothing visible - https://check-your-website.server-daten.de/?q=members.springlakegolfclub.net#txt

Same picture, no TXT entry.

That must be something like that (my own domain, that’s the TXT entry to create the wildcard certificate)

Perhaps share a screenshot of the menu.

#10

its not wild card but only one subdomain named “members”

#11

That’s the wrong name.

Checked manual, there is your name:

D:\temp>nslookup -type=TXT _acme-challenge.members.springlakegolfclub.net.springlakegolfclub.net.

_acme-challenge.members.springlakegolfclub.net.springlakegolfclub.net   text =

        "hdN_jewF5QmrfrjYpBJwpCj4Xz3-g7hoJNeVIaSkhj8"

Your menu adds the main domain springlakegolfclub.net.

So to create a correct entry, use only

_acme-challenge.members

as name.

PS: I’ve updated my tool, now I see:

D:\temp>nslookup -type=TXT _acme-challenge.members.springlakegolfclub.net.springlakegolfclub.net.

*** _acme-challenge.members.springlakegolfclub.net.springlakegolfclub.net. wurde von fritz.box nicht gefunden: Non-existent domain.

So you have removed the wrong entry.