SERVFAIL looking up CAA with certbot

kkoppenhaver · August 23, 2017, 3:06pm

Hi all,

Read through many of the forum topics here on this subject but still not able to find a resolution. Just trying to get a cert issued for my domain. Running the latest certbot on a brand new Ubuntu Digital Ocean droplet. Ran the following command:

certbot -d alphaparticle.com --manual --preferred-challenges dns certonly

And got back:

Domain: alphaparticle.com
Type:   connection
Detail: DNS problem: SERVFAIL looking up CAA for alphaparticle.com

Trying to figure out exactly what’s going wrong, as I have an A record pointing to the public IP and the www subdomain resolves as well. I’m using NameBright for my DNS provider, which I’ve seen in other posts may be an issue.

Any insight would be appreciated. Thanks so much!

schoen · August 23, 2017, 3:55pm

Hi @kkoppenhaver,

The CAA problem is exclusively with the DNS provider and doesn’t mean that you’ve done anything wrong. Unfortunately, it also means that there is nothing you can do to fix the problem other than using either a different DNS provider or a different authentication method, unless you can persuade the DNS provider to take action to fix things.

system · September 22, 2017, 3:55pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.