Http challenge failing

rborale · June 26, 2024, 3:20am

My domain is:

support.video.homeqpros.com

Aceme account url:
https://acme-v02.api.letsencrypt.org/acme/acct/608832226

I am using acme4j java client

Problem:

I am getting following error

{"time":"2024-06-19T01:58:59.240Z","lgr":"org.shredzone.acme4j.connector.DefaultConnection","level":"DEBUG","thread":"simpleMessageListenerContainer-28","msg":"Result JSON: {"type":"http-01","url":"
https://acme-v02.api.letsencrypt.org/acme/chall-v3/365797379867/HNScUw
","status":"invalid","validated":"2024-06-19T01:58:56Z","error":{"type":"urn:ietf:params:acme:error:dns","detail":"DNS problem: looking up A for support.video.homeqpros.com: Network Error between Resolver and Authority; DNS problem: looking up AAAA for support.video.homeqpros.com: Network Error between Resolver and Authority","status":400},"token":"8EDCZIJpK3TuawxZl285oTlK8uJqIQ64iakFKYmezwE"}"}

Jun 19, 2024 @ 07:28:59.318 haystack-log-shipper-88lf7 {"time":"2024-06-19T01:58:59.317Z","lgr":"org.shredzone.acme4j.connector.DefaultConnection","level":"DEBUG","thread":"simpleMessageListenerContainer-28","msg":"Result JSON: {"identifier":{"type":"dns","value":"support.video.homeqpros.com"},"status":"deactivated","expires":"2024-06-26T01:58:55Z","challenges":[{"type":"http-01","url":"
https://acme-v02.api.letsencrypt.org/acme/chall-v3/365797379867/HNScUw
","status":"invalid","validated":"2024-06-19T01:58:56Z","error":{"type":"urn:ietf:params:acme:error:dns","detail":"DNS problem: looking up A for support.video.homeqpros.com: Network Error between Resolver and Authority; DNS problem: looking up AAAA for support.video.homeqpros.com: Network Error between Resolver and Authority","status":400},"token":"8EDCZIJpK3TuawxZl285oTlK8uJqIQ64iakFKYmezwE"}]}"}

Here, dns resolution is happening but still somehow it seems letsencrypt is not showing it.

Can you please help to know the issue here??

webprofusion · June 26, 2024, 7:44am

It looks to be a DNSSEC configuration issue:

https://unboundtest.com/m/A/support.video.homeqpros.com/3D4COGRE

https://dnsviz.net/d/support.video.homeqpros.com/dnssec/

MikeMcQ · June 26, 2024, 1:08pm

You should refer to step 4 in these AWS docs to correct your Route53 config. Don't be confused by the title. It explains how to set your authoritive servers in general. The dnsviz report shown by webprofusion has that as at least one of the set of errors and possibly the most important error.

You may also need to consult with freshdesk. That looks like some sort of service related to your video setup. In any case, none of this directly involves Let's Encrypt. Your DNS is not setup properly.

system · July 26, 2024, 1:09pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Http challenge failure Help	2	456	November 30, 2022
Http challenge failure Help	6	265	June 14, 2024
Certificate generation is failing Help	7	108	August 29, 2024
Help i can't download the cert Help	12	3647	February 17, 2017
Failed to pass the challenge for domain Help	2	708	March 17, 2020

Http challenge failing

Related topics