Can't Sign A SSL Certificate

Poke · February 19, 2023, 10:11pm

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: masonserver.cloudns.ph

I ran this command: sudo certbot certonly --manual -d *.masonserver.cloudns.ph -d masonserver.cloudns.ph --agree-tos --no-bootstrap --manual-public-ip-logging-ok --preferred-challenges dns-01 --server https://acme-v02.api.letsencrypt.org/directory

It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator manual, Installer None
Obtaining a new certificate
An unexpected error occurred:
There were too many requests of a given type :: Error creating new order :: too many certificates already issued for "cloudns.ph". Retry after 2023-02-20T03:00:00Z: see Rate Limits - Let's Encrypt
Please see the logfiles in /var/log/letsencrypt for more details.

My web server is (include version): Ubuntu Server 20.04

The operating system my web server runs on is (include version): Ubuntu Server 20.04

My hosting provider, if applicable, is: Self

I can login to a root shell on my machine (yes or no, or I don't know): yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): 0.40.0

_az · February 19, 2023, 10:16pm

Because cloudns.ph is a domain that is shared between many users, there are only a limited number of new certificates that can be issued for it every week. (Rate Limits - Let's Encrypt).

Unless the owner of the domain requests a rate limit increase from Let's Encrypt, or gets their domain listed on the Public Suffix List, then you will simply need to wait and try again later in order to get a certificate for your subdomain.

One alternative could be to get your own domain name, or try one of the other available ACME certificate authorities like BuyPass or ZeroSSL.

Osiris · February 19, 2023, 10:40pm

This is a good idea regardless of the LE rate limits anyway, if users share the same domain, security wise.

MikeMcQ · February 19, 2023, 11:07pm

There are several cloudns domains in the PSL already. Maybe it would be easy for them to add cloudns.ph too

// Cloud DNS Ltd : http://www.cloudns.net
// Submitted by Aleksander Hristov <noc@cloudns.net>
cloudns.asia
cloudns.biz
cloudns.club
cloudns.cc
cloudns.eu
cloudns.in
cloudns.info
cloudns.org
cloudns.pro
cloudns.pw
cloudns.us

system · March 21, 2023, 11:08pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.