The second-level domain wildcard is the same as the name of the top-level domain certificate dns txt. Value is different


#1

For example, the names of *.a.com and a.com’s dns txt records are called _acme-challenge.a.com but their values are different. This is unable to join the txt record, and can not be verified.
Help me


#2

You can create multiple TXT records under a single DNS label.

For example:

$ dig +noall +answer _acme-challenge.plugindev.ga txt
_acme-challenge.plugindev.ga. 598 IN    TXT     "SLqPIPKURLJYkWvm8Xl1tpJP3WKNMNfYKqC0cCxHAxo"
_acme-challenge.plugindev.ga. 598 IN    TXT     "7S4ZVbhZ0NU86o1qK0xnEaInqHRy4pB7KZem1nQva2Q"

Every DNS management interface should allow you to achieve this.

As long as at one of the values matches, no problem.


#3

Hi @zhaosong

you have to create two TXT entries with the same domain name and different values.

PS: Sometimes there is a + - so you have one domain name, with + you can add additional entries.


#4

A good DNS zone manager can add multiple TXT records for the same hostname.

How did you ask us for help exactly? :wink:


#5

Checked your domain, there is a Letsencrypt - certificate with a lot of domain names, created today:

CN=*.httpcn.com
	01.03.2019
	30.05.2019
expires in 90 days	*.httpcn.com, *.m.httpcn.com, m.life.httpcn.com, 
m.login.httpcn.com, m.ping.httpcn.com, m.user.httpcn.com - 6 entries

So it looks that you have found a solution.


#6

Thank you, you bring me hope. I am trying.




赵松

邮箱:myyaoni@163.com

签名由 网易邮箱大师 定制


closed #7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.