Tell me what time of life DNS TXT-record _acme-challenge for verification domain?
that’s your decision. Letsencrypt uses the authoritative name servers, so the TTL isn’t relevant.
I created a txt record and after a few days when trying to get a certificate I got an Expired authorization error
I mean the time in which I can create a certificate.
The time between these two things should be on the order of minutes, not days.
I expect somewhere between 24 - 48 hours due to DNS propagation times, probably less. Most DNS hosts will propagate added TXT records in minutes, which is why validation keys have a short lifespan.
When you start the issuance process, something called a “pending authorization” is created. These last 7 days. The token you put in your _acme-challenge DNS record is tied to that, so it’s also good for 7 days.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.