Good morning... I'm having trouble creating a certificate with Certbot. It always gives me an error because it can't verify my domain ownership. My domain registrar is giving me a lot of trouble. I created a text file in the DNS settings, but that didn't work either. Is there any other way to create the certificate for my website and verify the domain ownership? I'm a beginner. Thanks.
My domain is:http://murciaweb.es/
When you opened this thread in the Help section, you should have been provided with a questionnaire. Maybe you didn't get it somehow (which is weird), or you've decided to delete it (and make our life a lot harder). In any case, all the answers to this questionnaire are required:
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
Sounds like you're on shared hosting. On which computer/host are you running Certbot on?
Certbot usually requires root access, as even if you can get a certificate (which can be difficult on shared hosting), you're probably not able to actuall install it into the webserver due to the lack of user rights.
Also, your control panel has a menu option "Certificados SSL". What options does that give?
By the way, your command and its output do not use the dns-01 challenge, so where that DNS TXT entry comes from is a mystery to me.. You're probably telling just the half story here.
If you actually have root permissions (what kind of plan are you on exactly? Do you have a VPS?), then it shouldn't be any issue..
Which "kali" host is this? I doubt your webhosting provider DonDominio runs Kali on their webservers..
You haven't answered my questions. You say you have root permissions. I asked on which computer/host/server you're running Certbot on. You haven't answered that.
If you have an option in that control panel to do so: probably, yes. I can't read the language, sorry.
While it's possible to get a certificate from your own computer, this is more difficult. As the Let's Encrypt validator will connect to your website obviously and not to your computer. So Certbot somehow needs to put the challenge (file for http-01 challenge or TXT DNS value for the dns-01 challenge) where the Let's Encrypt validation server can find this.
Even though it's possible to do this manually, this is highly discouraged.. Currently Let's Encrypt certificates are valid for 90 days with a recommendation to start renewing after 60 days into the certs validity.. So you'd need to manually renew every 2 months or so.. Which can easily be forgotten.. Or holidays/sabbticals/whatever..
And in 2028, Let's Encrypt halfs the validity to 45 days (see https://letsencrypt.org/2025/12/02/from-90-to-45), so you'd manually need to refresh every month!
Needless to say you want to somehow automate this.. But that's a challenge and depends on what options you have on your "DonDominio" hosting.. Can you add/remove files or DNS tokens somehow automatically? E.g. files over I dunno, FTP?
But all in all I'd say: change hosting provider to one that supports free Let's Encrypt certificates out of the box.. (And no, I don't have any recommendations.)
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.