Failed authorization - ACME method for dyndns

jutje · March 24, 2020, 5:57pm

Hi,

My trying to auth my dyndns domain using ACME on Pfsense.
But I keep receiving the following msg.

Webserver
Renewing certificate
account: Mywebserver
server: letsencrypt-staging-2

/usr/local/pkg/acme/acme.sh --issue -d 'webserver.dyndns-web.com' --dns 'dns_dyn' --home '/tmp/acme/webserver/' --accountconf '/tmp/acme/webserver/accountconf.conf' --force --reloadCmd '/tmp/acme/webserver/reloadcmd.sh' --log-level 3 --log '/tmp/acme/webserver/acme_issuecert.log'
Array
(
[path] => /etc:/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin/
[PATH] => /etc:/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin/
[DYN_Customer] => [USERNAME]
[DYN_Username] => [MY API CODE]
[DYN_Password] => [MY PASSWORD]
)
[Tue Mar 24 13:17:08 AST 2020] Single domain='webserver.dyndns-web.com'
[Tue Mar 24 13:17:09 AST 2020] Getting domain auth token for each domain
[Tue Mar 24 13:17:11 AST 2020] Getting webroot for domain='webserver.dyndns-web.com'
[Tue Mar 24 13:17:11 AST 2020] Adding txt value: wKxQiYm_5H40nrz8wv0QtAphMEYyIwdmSoGMigih3kA for domain: _acme-challenge.webserver.dyndns-web.com
[Tue Mar 24 13:17:11 AST 2020] Start Dyn API Session
[Tue Mar 24 13:17:12 AST 2020] get token failed
[Tue Mar 24 13:17:12 AST 2020] Error add txt for domain:_acme-challenge.webserver.dyndns-web.com
[Tue Mar 24 13:17:12 AST 2020] Please check log file for more details: /tmp/acme/webserver/acme_issuecert.log
[Tue Mar 24 13:17:13 AST 2020] Please refer to libcurl - Error Codes for error code: 35

My question is what do I have to do here?
And how do I add a txt for my domain on dyn.com is that even posible?

_az · March 24, 2020, 9:22pm

Try run the same acme.sh command with --debug added.

Doing so, you will be able to see the response from the Dyn API, which should be some kind of error, since your Dyn credentials didn’t appear to work.

If you can’t do that, double check that your API credentials are working. For example, try run:

curl -i --data "{\"customer_name\":\"DYN_CUSTOMER\", \"user_name\":\"DYN_USERNAME\", \"password\":\"DYN_PASSWORD\"}" -H 'Content-Type: application/json' "https://api.dynect.net/REST/Session/"

making sure to replace DYN_CUSTOMER, DYN_USERNAME and DYN_PASSWORD with your real credentials.

system · April 23, 2020, 9:22pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.