I ran this command:
acme.sh --issue --dns dns_cf -d "node-flex-servers.com" --server letsencrypt
--key-file /etc/letsencrypt/live/node-flex-servers.com/privkey.pem
--fullchain-file /etc/letsencrypt/live/node-flex-servers.com/fullchain.pem
It produced this output:
Add txt record error.
Error add txt for domain:_acme-challenge.node-flex-servers.com
Please check log file for more details: /root/.acme.sh/acme.sh.log
My web server is (include version): Newest i guess
The operating system my web server runs on is (include version): Ubuntu 22.04
My hosting provider, if applicable, is: Hetzner
I can login to a root shell on my machine (yes or no, or I don't know): i don't know
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no i guess
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): not downloaded
Why are you trying to make acme.sh save its' cert files in the certbot [/etc/letsencrypt/live/] path?
You are using:
But I don't see where/how its' been instructed to complete that request.
DNS authentication requires a TXT record to be created in the public DNS zone:
[and you are not even trying to get a wildcard cert - missed opportunity (if you could make use of one)]
CloudflareCDN
WARNING
The domain node-flex-servers.com is being served through Cloudflare CDN. Any Let's Encrypt certificate installed on the origin server will only encrypt traffic between the server and Cloudflare. It is strongly recommended that the SSL option 'Full SSL (strict)' be enabled.
https://support.cloudflare.com/hc/en-us/articles/200170416-What-do-the-SSL-options-mean-
From the above WARNING "It is strongly recommended that the SSL option 'Full SSL (strict)' be enabled."
Have you done that?
