I tried my domain in letsdebug many times, and got different errors , I can’t figure out what’s wrong. Any help please
My domain is: sig4pg.com
I ran this command: certbot run -a manual -i nginx -d *.sig4pg.com --preferred-challenges dns
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator manual, Installer nginx
Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org
Obtaining a new certificate
Performing the following challenges:
dns-01 challenge for sig4pg.com
NOTE: The IP of this machine will be publicly logged as having requested this
certificate. If you’re running certbot in manual mode on a machine that is not
your server, please ensure you’re okay with that.
Are you OK with your IP being logged?
(Y)es/(N)o: Y
Please deploy a DNS TXT record under the name
_acme-challenge.sig4pg.com with the following value:
IyjyGQw-_vgJGoM6TM1UrALoPENHpcPhqTCyoH54TVg
Before continuing, verify the record is deployed.
Press Enter to Continue
Waiting for verification…
Resetting dropped connection: acme-v02.api.letsencrypt.org
Challenge failed for domain sig4pg.com
dns-01 challenge for sig4pg.com
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: sig4pg.com
Type: dns
Detail: During secondary validation: DNS problem: SERVFAIL looking
up CAA for sig4pg.com - the domain’s nameservers may be
malfunctioning
My web server is (include version): nginx version: nginx/1.16.1
The operating system my web server runs on is (include version): CentOS Linux release 7.8.2003 (Core)
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes):
I’m using a control panel to manage my site (no):
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot): certbot 1.5.0