Rate Limits Error

Hello
First of all thanks for any help or tip.. much appreciated :slight_smile:

I ran this command:

certbot certonly --manual --manual-auth-hook /etc/letsencrypt/acme-dns-auth.py --preferred-challenges dns -d MYDOMAIN.COM

It produced this output:

An unexpected error occurred:
There were too many requests of a given type :: Error creating new order :: too many failed authorizations recently: see Failed Validation Limit - Let's Encrypt

I dont have a web server... I just need to download a certificate. Its also important to mention that I installed certbot 10 minute ago so I dont know why I reached the limit...
The certbot version is 1.22.0 @ Rocky 9

Thanks!

1 Like

First, Certbot 1.22 is about 2.5 years old. You should probably use a different install method. See: https://certbot.eff.org

As for your problem, the error message is pretty clear with a link to an article with detailed info.

The production environment allows only a small number of failed requests from the same account per hour. You should use the staging environ during testing. Links for that are also in the article linked in the error message.

If you want help with the actual errors you were getting we would need to see those. Although, for acme-dns those are almost always just configuration problems so review all the steps you used to set that up. We would absolutely need to see actual domain name to help if you need it.

4 Likes

I'm pretty sure that's not your domain. Please note that the questionnaire introduction at the top clearly mentions you need to provide the real domain/hostname to get help.

Getting a certificate requires validation of the hostname(s). It seems you're using acme-dns for that. Did you set up acme-dns properly? If we would know the actual domain name, we could have checked already.

1 Like

Start by using dig to check your current CNAME points to your acme-dns:

dig _acme-challenge.exmaple.com -t CNAME

Then check that it also resolved via that CNAME to a TXT record

dig _acme-challenge.exmaple.com -t TXT

Then check what response you get when testing with https://unboundtest.com/ (select TXT, enter your full _acme-challenge.yourdomain.com record name and check it returns a value.

3 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.