Can't request cert with dns-01 cloudflare

My domain is: rndevelopment.ga

I ran this command: certbot certonly --dns-cloudflare --dns-cloudflare-credentials /root/.secrets/certbot/cloudflare.ini -d rndevelopment.ga

It produced this output: https://pastebin.com/tBqgLpeY

My web server is: nginx/1.14.2

The operating system my web server runs on: Debian 10 (buster)

I can login to a root shell on my machine: yes

The version of my client is: certbot 0.31.0

The manual command does work: certbot --server https://acme-v02.api.letsencrypt.org/directory -d rndevelopment.ga --manual --preferred-challenges dns-01 certonly

Thanks in advance
Rob Nickmans

1 Like

I’m not sure why there’s a “KeyError: ‘code’” exception in the CloudFlare python package, but what I did see was:

2020-05-03 20:02:36,524:DEBUG:urllib3.connectionpool:https://api.cloudflare.com:443 “POST /client/v4/zones/ef927dc2fece1c17b6a6b9de238a116f/dns_records HTTP/1.1” 401 None

See the HTTP 401 return code? According to the CloudFlare API v4 documentation that means the user isn’t authorized.

1 Like

I guess the Cloudflare API is returning some kind of error, but a bug in the Cloudflare Python library is causing it to eat the error message and do this instead. There’s an open issue about that:

From what that issue also says, Cloudflare might not allow the DNS API to be used with .ga domains.

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.