How process invalid challenges


#1

Hello!

When validate order using DNS challenge (dns-01) we can got error about incorrect validation, because not all DNS servers got new information about TXT records (e.g. validation process on ACME is failed with error).

After this SSL certificate can not issued, because API returned invalid status on challenge validation (cached version) during unknown time (normal it’s 1 hour, but lately is’s large then 3 hour.).

How correct to handle this errors, e.g. validation errors. Retry after a certain time? Or another actions?


#2

Hi @alurin

ignore it and ignore this order. Start with a new order.

Check your protocol, there should be an order url, something like

https://acme-v02.api.letsencrypt.org/acme/order/yourAccountId/yourOrderId

Use your browser to check this url. The status of your order should be invalide. So you can’t use this order.