How to handle an invalid DNS-Challenge

When an challenge become invalid because one of the dns servers was not yet updates,
is there any way to retry the challenge ? Else after such an error the validation is blocked.
Would it be an good idea to use TLSA for validation if an acount/cert key is allowed by the domain owner ?

No. You can’t do anything to fix an invalid authorization.

You need to make a new authorization, with a new challenge value, and set the DNS records again. :slightly_frowning_face:

Hi, this raise the next question

  1. Now the Authorization is expired. And there is no newAuthz in
  2. The newOrder return only an order with an expired Challenge.
    So what should i do ?
“type”: “urn:ietf:params:acme:error:malformed”,
“detail”: “Expired authorization”,
“status”: 404

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.