Domain verification failed


I can not self-sign my domain with a ssl certificate. Below the informations. says everything is ok:

My domain is:

I ran this command:
sudo certbot --apache

It produced this output:

Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Starting new HTTPS connection (1):

Which names would you like to activate HTTPS for?


Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter ‘c’ to cancel):
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for
http-01 challenge for
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. (http-01): urn:acme:error:dns :: DNS problem: NXDOMAIN looking up A for

My web server is (include version):

The operating system my web server runs on is (include version): centos 7 newest

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

Hi @Jony,

Your subdomain doesn’t have neither A, AAAA nor CNAME records defined in your authoritative DNS servers and that is the reason for the error. Just add an A record pointing to your ip address.


1 Like

This no subdomain. Or get I something wrong? points somewhere but doesn’t. That’s why Let’s Encrypt has a problem creating a certificate.

How do you manage your DNS records for

You probably will want to add a CNAME for pointing to

If you don’t want visitors to use (and instead stick to , you can just not include that domain on the certificate:

certbot --apache -d

Ok, thanks for the information. I got it now. Good help!

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.