Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: dbridgemailer.com
I ran this command:
Set-PAServer LE_PROD
$acct=get-paaccount
$pArgs = @{
OVHAppKey = 'xxxxxxxxxxxxxx'
OVHAppSecret = (ConvertTo-SecureString "xxxxxxx" -AsPlainText -Force)
OVHConsumerKey = (ConvertTo-SecureString "xxxxxxx" -AsPlainText -Force)
OVHRegion = 'ovh-ca'
}
$CertNames='dbridgemailer.com','www.dbridgemailer.com'
New-PACertificate $CertNames -AcceptTOS -Contact xxxxxxxxxxxx -Plugin OVH -PluginArgs $pArgs -Verbose -Force -ErrorAction Stop
It produced this output:
VERBOSE: Updating directory info from https://acme-staging-v02.api.letsencrypt.org/directory
VERBOSE: Using ACME Server https://acme-staging-v02.api.letsencrypt.org/directory
VERBOSE: Using account XXXXXXXXXX
VERBOSE: Order name not specified, using 'dbridgemailer.com'
VERBOSE: Creating a new order 'dbridgemailer.com' for dbridgemailer.com, www.dbridgemailer.com
WARNING: Fewer Plugin values than names in the order. Using OVH for the rest.
VERBOSE: Publishing challenge for Domain dbridgemailer.com with Token XXXXXXXXX using Plugin OVH and DnsAlias ''.
Submit-ChallengeValidation : {"message":"Query out of time","httpCode":"400 Bad Request","errorCode":"QUERY_TIME_OUT"}
At C:\Program Files\WindowsPowerShell\Modules\Posh-ACME\4.23.1\Public\New-PACertificate.ps1:253 char:9
-
Submit-ChallengeValidation
-
~~~~~~~~~~~~~~~~~~~~~~~~~~
- CategoryInfo : InvalidOperation: (System.Net.HttpWebRequest:HttpWebRequest) [Submit-ChallengeValidation], WebException
- FullyQualifiedErrorId : WebCmdletWebResponseException,Submit-ChallengeValidation
My web server is (include version):
Windows Server 2016
The operating system my web server runs on is (include version):
Windows Server 2016
My hosting provider, if applicable, is:
OVH
I can login to a root shell on my machine (yes or no, or I don't know):
Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
No
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
Posh-Acme
This worked perfectly fine initially, now it fails, and yes the time is set correctly (EST timezone)