Certbot renewal failed using dns-google-domains

tmcknn3 · July 1, 2024, 1:58pm

I got it covered. There was a problem with the DNS. I appreciate everyone's help. You guys are the best.

rmbolger · July 1, 2024, 5:43pm

Didn't Google Domains get shut down and sold to Squarespace?

linkp · July 1, 2024, 7:14pm

Their nameservers are still resolving.

rmbolger · July 1, 2024, 7:48pm

Right, but is the old Google hosted update API still functional?

MikeMcQ · July 1, 2024, 7:48pm

That is unusual error.

Are you using the dns-google-domains authenticator from: GitHub - aaomidi/certbot-dns-google-domains: Google Domains plugin for Certbot.

You might try posting on that github for suggestions on how to debug.

I would check that your access token is still correct. The parameters you used to get the cert are stored in the Certbot renewal conf file. Check that conf file and the access token there against your DNS control panel token

/etc/letsencrypt/renewal/gitlab.newtonprincipleagency.com.conf

linkp · July 1, 2024, 7:53pm

That, I cannot answer, as I have never used their authoritative nameservers or API.

I think the course of action recommend by @MikeMcQ is going to be the best way to proceed.

MikeMcQ · July 1, 2024, 8:11pm

@tmcknn3 If you provide details about what you corrected that might help someone in the future.

If you make those comments as a new post in this thread then we can mark those details as the Solution. We can't mark revisions to your first post like that.

Thanks

tmcknn3 · July 1, 2024, 8:24pm

I had to manually added the certs. Squarespace would not let me do it automatically.
Once I did that, it worked.

shaymdev · July 10, 2024, 5:01pm

I think I'm battling the same issue (but it's hard to say because I think the original post was edited to remove the details).

I've got a google domains -> squarespace transfered domain and I'm using the same certbot plugin.

Can you explain what you had to do to get around the issue? What do you mean you manually added the certs?

onlinej · July 11, 2024, 4:29am

Can you please provide details of how you added the certs. Thanks

MikeMcQ · July 11, 2024, 1:18pm

@shaymdev @onlinej

I think what they mean is they used the Certbot --manual option. This shows you a value that you manually add as a TXT record to your DNS zone.

This manual method cannot be automated so you repeat this every 60 days or so.

You should ask Squarespace when they plan to support a DNS API. Then someone would have to develop a plugin to use it.

Your other option is to change the DNS provider. Cloudflare is a commonly used one with good plugin support on many ACME clients (not just Certbot).

Here is the FAQ on Squarespace. Note the last sentence about "DNS API"

system · August 10, 2024, 1:18pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Renewal error - perhaps related to migration to squarespace Help	6	546	August 14, 2024
Certbot-dns-google Problems Help	7	3117	October 21, 2020
Squarespace SSL cert could not be issued Help	5	1421	June 20, 2019
Error when renewing certificate using the dns-google authenticator plugin Help	7	1021	February 20, 2020
Dns-google certbot renewal is giving me 403 error Help	8	2437	December 18, 2019

Certbot renewal failed using dns-google-domains

Related topics