Could not issue an SSL/TLS certificate for

knowledgemaster · May 3, 2024, 12:19pm

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: plantknowledgemaster.com

I ran this command: plesk -> Extensions -> Secure plesk with a free SSL/TLS certificate

It produced this output: Could not issue an SSL/TLS certificate for plantknowledgemaster.com
Details

Could not issue a Let's Encrypt SSL/TLS certificate for plantknowledgemaster.com.

One of the Let's Encrypt rate limits has been exceeded for plantknowledgemaster.com.

See the related Knowledge Base article for details.

Details

Invalid response from https://acme-v02.api.letsencrypt.org/acme/new-order.

Details:

Type: urn:ietf:params:acme:error:rateLimited

Status: 429

Detail: Error creating new order :: too many failed authorizations recently: see Failed Validation Limit - Let's Encrypt

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is: https://www.hosting.kr/

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): not sure

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Osiris · May 3, 2024, 12:55pm

You've tried too often too fast and now this temporary rate limit error is causing the REAL problem being "hidden".

That said, using LetsDebug.net, there seem to be some DNS issues:

(http-01 challenge)

(tls-alpn-01 challenge)

(dns-01 challenge)

I have no clue which challenge Plesk is using, but all tests give hint at a DNS issue. Which is corroborated by

https://unboundtest.com/m/A/plantknowledgemaster.com/LWGMJEWE

and

https://dnsviz.net/d/plantknowledgemaster.com/ZjTefg/dnssec/

Please fix your DNS and try again (after the rate limit has been lifted).

Also:

How can you not be sure while you're clearly using Plesk?

Bruce5051 · May 3, 2024, 4:24pm

@knowledgemaster is your issue solved?

It looks like a certificate was successfully issued crt.sh | 12939773968

        Serial Number:
            03:ce:c0:fe:18:7a:14:26:1c:c2:8c:a6:38:6d:3c:91:bd:af

        Validity
            Not Before: May  3 12:26:12 2024 GMT
            Not After : Aug  1 12:26:11 2024 GMT

And that that certificate is presently being served as shown here https://decoder.link/sslchecker/plantknowledgemaster.com/443

Osiris · May 3, 2024, 4:27pm

Looking at an updated DNSViz run, their DNS currently seems to be working and thus also certificate issuance.

system · June 2, 2024, 4:28pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Error: Could not issue a Let's Encrypt SSL/TLS certificate for foo.es. Authorization for the domain failed Help	2	2760	October 13, 2017
Could not issue an SSL/TLS certificate Help	16	1757	December 31, 2020
Let's Encrypt SSL / TLS certificate could not be issued Help	2	1617	January 17, 2020
ERROR: Could not issue an SSL/TLS certificate Help	3	317	June 21, 2024
Ssl certificate issue Help	9	785	January 28, 2022

Could not issue an SSL/TLS certificate for

Related topics