Hello, I am trying to generate a wildcard certificate for my domain but I keep getting the error below. The funny thing is that the
dns-cloudflare plugin does successfully add and remove the TXT records to Cloudflare but for some reason still reports an error.
My domain is: *neuschool.app and .neuschool.app
I ran this command:
./certbot-auto certonly \ --noninteractive \ --server https://acme-v02.api.letsencrypt.org/directory \ --agree-tos \ --email 'firstname.lastname@example.org' \ --preferred-challenges dns \ --rsa-key-size 4096 \ -d '*.neuschool.app' \ -d 'neuschool.app' \ --dns-cloudflare \ --dns-cloudflare-credentials /etc/certbot/secrets/cloudflare.ini \ --dns-cloudflare-propagation-seconds 300
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log Plugins selected: Authenticator dns-cloudflare, Installer None Obtaining a new certificate Performing the following challenges: dns-01 challenge for neuschool.app dns-01 challenge for neuschool.app Waiting 300 seconds for DNS changes to propagate Waiting for verification... Challenge failed for domain neuschool.app Challenge failed for domain neuschool.app dns-01 challenge for neuschool.app dns-01 challenge for neuschool.app Cleaning up challenges Some challenges have failed. IMPORTANT NOTES: - The following errors were reported by the server: | Domain: neuschool.app Type: unauthorized Detail: No TXT record found at _acme-challenge.neuschool.app | Domain: neuschool.app Type: unauthorized Detail: No TXT record found at _acme-challenge.neuschool.app | To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address.
My web server is (include version): nginx 1.17.9
The operating system my web server runs on is (include version): Ubuntu 18.04.4 LTS
My hosting provider, if applicable, is: I have my own server. My DNS provider is Cloudflare and my domain registrar is Google Domains
I can login to a root shell on my machine (yes or no, or I don’t know): Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you’re using Certbot): certbot-auto 1.4.0