Issue generating cert

Hello! i'm having issues generating the cert

My domain is:

I'm trying to generate

I ran this command: using swag:

    container_name: swag
      - NET_ADMIN
      - PUID=1000
      - PGID=1000
      - TZ=America/Argentina/Buenos_Aires
      - VALIDATION=dns
      - SUBDOMAINS=wildcard
      - DNSPLUGIN=cloudflare
      - DOCKER_MODS=linuxserver/mods:swag-auto-proxy|linuxserver/mods:universal-docker|linuxserver/mods:universal-cloudflared
      - DOCKER_HOST=dockerproxy
      - CF_ZONE_ID=cloudflare_zone_id
      - CF_ACCOUNT_ID=cloudflare_acc_id
      - CF_API_TOKEN=cloudflare_api_token
      - CF_TUNNEL_PASSWORD=secure_passwd
      - FILE__CF_TUNNEL_CONFIG=/config/tunnelconfig.yml
      - /home/me/docker/aptalca/appdata/swag:/config
    restart: unless-stopped

It produced this output:

dns validation via cloudflare plugin is selected
Generating new certificate
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Requesting a certificate for * and
Unsafe permissions on credentials configuration file: /config/dns-conf/cloudflare.ini
Unable to determine zone_id for using zone names: ['', 'ar']. The error from Cloudflare was: 0 confused info - both key and token defined.
Ask for help or search for solutions at See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
ERROR: Cert does not exist! Please see the validation error above. Make sure you entered correct credentials into the /config/dns-conf/cloudflare.ini file.

API Token has:

  • All accounts - Cloudflare Tunnel:Edit
  • All zones - Zone:Edit, DNS:Edit

Cloudflare is pointing to my server and ports 80 and 443 are open. Proxy status was disabled on CF

I can login to a root shell on my machine (yes or no, or I don't know): yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 1.32.0

Any idea on why i'm getting the following error ? Thanks in advance!

1 Like

Hello @acel, welcome to the Let's Encrypt community. :slightly_smiling_face:

Let's Debug is showing 2 WARNINGs for DNS-01 Challenge.

Here is a list of issued certificates, one, |, issued on 2023-01-10.


Unrelated, as:

I think the instructions are spot on:


woww! How could I have missed that!!

Thank you very much for the help!! Finally, I was able to generate it! :raised_hands: :heart:


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.