My domain is: lmetv.be
I ran this command:
sudo certbot certonly --manual --manual-auth-hook /etc/letsencrypt/acme-dns-auth.py --preferred-challenges dns --debug-challenges -d *.lmetv.be -d lmetv.be --dry-run -v
It produced this output:
Failed authorization procedure. lmetv.be (dns-01): urn:ietf:params:acme:error:dns :: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.lmetv.be - check that a DNS record exists for this domain, lmetv.be (dns-01): urn:ietf:params:acme:error:dns :: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.lmetv.be - check that a DNS record exists for this domain
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: lmetv.be
Type: None
Detail: DNS problem: NXDOMAIN looking up TXT for
_acme-challenge.lmetv.be - check that a DNS record exists for this
domainDomain: lmetv.be
Type: None
Detail: DNS problem: NXDOMAIN looking up TXT for
_acme-challenge.lmetv.be - check that a DNS record exists for this
domain -
Your account credentials have been saved in your Certbot
configuration directory at /etc/letsencrypt. You should make a
secure backup of this folder now. This configuration directory will
also contain certificates and private keys obtained by Certbot so
making regular backups of this folder is ideal.
My web server is (include version): NA
The operating system my web server runs on is (include version): proxmox 6 (Debian 10)
My hosting provider, if applicable, is: NA
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): 0.31.0
This server is behind an ADSL router with a public IP. I would like to create a certificate that I can use on the proxmox server itself but also on another proxmox server @ OVH and on tthe various containers and virtual machines I run on them.
I would like to use the manual renewal method as no-ip does not provide an API to maintain DNS records.
I could not create a CNAME that starts with '_' (it seems to be a deliberate choice from no-ip), hence I added a TXT record for _acme-challenge to my lmetv.be A record.
The funny thing is that I can lookup the TXT information that cerbot seems to be looking for but reports to be missing.
I made several attempts (with just lmetv.be, with just proxmox1.lmetv.be) : they all failed. Note that I recently moved my DNS from my registrar (NETIM) to no-ip. Note also that I wasn't able to register here with an address in my domain and had to use an address at gmail.com.
Thanks in advance.
Marc