Failed DNS Challenge

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: rs.bluems.re.kr

I ran this command:

docker run -it --rm --name certbot -v '/volume1/docker/tmp/etc:/etc/letsencrypt' -v '/volume1/docker/tmp/var:/var/lib/letsencrypt' certbot/certbot certonly -d 'rs.bluems.re.kr' -d 'bluems.re.kr' -d '*.bluems.re.kr' --manual --preferred-challenges dns --server https://acme-v02.api.letsencrypt.org/directory

It produced this output:

Please deploy a DNS TXT record under the name
_acme-challenge.bluems.re.kr with the following value:

nWSnQBxtZVEMq5dQqzrqHG5c6kbonk1-hi8pLSmqpLs

Before continuing, verify the record is deployed.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Press Enter to Continue

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Please deploy a DNS TXT record under the name
_acme-challenge.bluems.re.kr with the following value:

L2JzC5zmVGx7b1u_3_-AAmubfNiw4oJ9zpi0Rqw8NEk

Before continuing, verify the record is deployed.
(This must be set up in addition to the previous challenges; do not remove,
replace, or undo the previous challenge tasks yet. Note that you might be
asked to create multiple distinct TXT records with the same name. This is
permitted by DNS standards.)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Press Enter to Continue
Waiting for verification...
Challenge failed for domain bluems.re.kr
dns-01 challenge for bluems.re.kr
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: bluems.re.kr
   Type:   unauthorized
   Detail: Incorrect TXT record
   "L2JzC5zmVGx7b1u_3_-AAmubfNiw4oJ9zpi0Rqw8NEk" found at
   _acme-challenge.bluems.re.kr

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address.

The operating system my web server runs on is (include version): Synology DSM 7

My hosting provider, if applicable, is: no

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): using docker image certbot 0.40.1

Comment
I wait 10 minutes after add/modify all txt record, test below sites and typing enter.

I test letsdebug: (tested: Let's Debug (letsdebug.net))

and query txt record: (tested: server-daten.de)

Both values need to be there at the same time, in separate TXT records on the same _acme-challenge.bluems.re.kr domain.

  • nWSnQBxtZVEMq5dQqzrqHG5c6kbonk1-hi8pLSmqpLs
  • L2JzC5zmVGx7b1u_3_-AAmubfNiw4oJ9zpi0Rqw8NEk

From the look of your output, you are removing the first TXT record when you add the second one.

4 Likes