Unable to issue certificate on WHM

Hi,
I am getting an error on whm while trying to issue a certificate using lets encrypt.
Not sure why I am getting this error.

My domain is: whm.seagrida.no

I ran this command: I was trying to issue a certificate to all user in the WHM.
It produced this output: I check the log and it seems a lot of error

#### Log for the AutoSSL run for all users: Wednesday, January 13, 2021 2:01:26 PM GMT+0100 (Let’s Encrypt™)

2:01:26 PM AutoSSL’s configured provider is “Let’s Encrypt™”.

Cached Let’s Encrypt DCV (Domain Control Validation) values: 0

Looking for potential NAT (Network Address Translation) problems …

2:01:26 PM This server does not use NAT.

2:01:26 PM Analyzing 2 users …

2:01:26 PM Analyzing “bluecar”’s domains …

2:01:26 PM Analyzing “bluecarbon.no” (website) …

2:01:26 PM ERROR TLS Status: Defective

ERROR Defect: NO_SSL: No SSL certificate is installed.

2:01:26 PM Attempting to ensure the existence of necessary CAA records …

2:01:26 PM No CAA records were created.

2:01:26 PM Verifying 10 domains’ management status …

Verifying “Let’s Encrypt™”’s authorization on 10 domains via DNS CAA records …

2:01:26 PM “bluecarbon.no” is managed.

“whm.bluecarbon.no” is managed.

“www.bluecarbon.no” is managed.

“mail.bluecarbon.no” is managed.

“cpanel.bluecarbon.no” is managed.

“webdisk.bluecarbon.no” is managed.

“webmail.bluecarbon.no” is managed.

“cpcontacts.bluecarbon.no” is managed.

“cpcalendars.bluecarbon.no” is managed.

“*.bluecarbon.no” is managed.

All of this user’s 10 domains are managed.

CA authorized: “bluecarbon.no”

CA authorized: “*.bluecarbon.no”

CA authorized: “whm.bluecarbon.no”

CA authorized: “cpanel.bluecarbon.no”

CA authorized: “www.bluecarbon.no”

CA authorized: “mail.bluecarbon.no”

CA authorized: “webdisk.bluecarbon.no”

CA authorized: “webmail.bluecarbon.no”

CA authorized: “cpcontacts.bluecarbon.no”

CA authorized: “cpcalendars.bluecarbon.no”

“Let’s Encrypt™” is authorized to issue certificates for 10 of this user’s 10 domains.

2:01:26 PM Performing HTTP DCV (Domain Control Validation) on 9 domains …

2:01:27 PM Redirection #1 (webmail.bluecarbon.no): http://webmail.bluecarbon.no/.well-known/acme-challenge/NKD6ZBTLPE745E8UTFVHNIJD051M9BGW → /.well-known/acme-challenge/NKD6ZBTLPE745E8UTFVHNIJD051M9BGW

WARN Local HTTP DCV error (bluecarbon.no): The system queried for a temporary file at “http://bluecarbon.no/.well-known/acme-challenge/RHNI31UB2IA250W_F1KLGZKWTVAHJ-5T”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.

WARN Local HTTP DCV error (whm.bluecarbon.no): The system failed to fetch the DCV (Domain Control Validation) file at “http://whm.bluecarbon.no/.well-known/acme-challenge/HEE306ZQHMTG5M5UUO5XQ8P10_UC5FVX” because of an error: The system failed to send an HTTP (Hypertext Transfer Protocol) “GET” request to “http://whm.bluecarbon.no/.well-known/acme-challenge/HEE306ZQHMTG5M5UUO5XQ8P10_UC5FVX” because of an error: (XID 5b2j6t) The response exceeded the maximum length (16 KB). (<!DOCTYPE html><html lang="en" dir="ltr"><head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> …) at /usr/local/cpanel/Cpanel/SSL/DCV.pm line 657.. The domain “whm.bluecarbon.no” resolved to an IP address “46.250.210.119” that does not exist on this server.

WARN Local HTTP DCV error (www.bluecarbon.no): The system queried for a temporary file at “http://www.bluecarbon.no/.well-known/acme-challenge/Y92TWJ5PECF_LXL2L72E027V9NI8JV-D”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.

WARN Local HTTP DCV error (mail.bluecarbon.no): The system queried for a temporary file at “http://mail.bluecarbon.no/.well-known/acme-challenge/37ZKKSH00OXP-YIW2SS0R-JVIJCU5XFM”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist. The domain “mail.bluecarbon.no” resolved to an IP address “46.250.210.119” that does not exist on this server.

WARN Local HTTP DCV error (cpanel.bluecarbon.no): The system failed to fetch the DCV (Domain Control Validation) file at “http://cpanel.bluecarbon.no/.well-known/acme-challenge/Y5QO97AYFJ6QLWVT8ZU0915W0H_ANC2W” because of an error: The system failed to send an HTTP (Hypertext Transfer Protocol) “GET” request to “http://cpanel.bluecarbon.no/.well-known/acme-challenge/Y5QO97AYFJ6QLWVT8ZU0915W0H_ANC2W” because of an error: (XID wgt9ae) The response exceeded the maximum length (16 KB). (<!DOCTYPE html><html lang="en" dir="ltr"><head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> …) at /usr/local/cpanel/Cpanel/SSL/DCV.pm line 657.. The domain “cpanel.bluecarbon.no” resolved to an IP address “46.250.210.119” that does not exist on this server.

WARN Local HTTP DCV error (webdisk.bluecarbon.no): The system queried for a temporary file at “http://webdisk.bluecarbon.no/.well-known/acme-challenge/AQUKTWSRWZQE5F_ZJUS8Q-QLFYOW0J2S”, but the web server responded with the following error: 401 (Unauthorized). A DNS (Domain Name System) or web server misconfiguration may exist. The domain “webdisk.bluecarbon.no” resolved to an IP address “46.250.210.119” that does not exist on this server.

WARN Local HTTP DCV error (webmail.bluecarbon.no): The system failed to fetch the DCV (Domain Control Validation) file at “http://webmail.bluecarbon.no/.well-known/acme-challenge/NKD6ZBTLPE745E8UTFVHNIJD051M9BGW” because of an error: The system failed to send an HTTP (Hypertext Transfer Protocol) “GET” request to “http://webmail.bluecarbon.no/.well-known/acme-challenge/NKD6ZBTLPE745E8UTFVHNIJD051M9BGW” because of an error: (XID 4hpxfu) The response exceeded the maximum length (16 KB). (<!DOCTYPE html><html lang="en" dir="ltr"><head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> …) at /usr/local/cpanel/Cpanel/SSL/DCV.pm line 657.. The domain “webmail.bluecarbon.no” resolved to an IP address “46.250.210.119” that does not exist on this server.

WARN Local HTTP DCV error (cpcontacts.bluecarbon.no): The system queried for a temporary file at “http://cpcontacts.bluecarbon.no/.well-known/acme-challenge/0AHO_8L6DYA-0X1EGJ-HVJ9J_P_9CASA”, but the web server responded with the following error: 401 (Unauthorized). A DNS (Domain Name System) or web server misconfiguration may exist. The domain “cpcontacts.bluecarbon.no” resolved to an IP address “46.250.210.119” that does not exist on this server.

WARN Local HTTP DCV error (cpcalendars.bluecarbon.no): The system queried for a temporary file at “http://cpcalendars.bluecarbon.no/.well-known/acme-challenge/ZSCK5_YVBJV1V6BP-LDC4QB-1J_US_GF”, but the web server responded with the following error: 401 (Unauthorized). A DNS (Domain Name System) or web server misconfiguration may exist. The domain “cpcalendars.bluecarbon.no” resolved to an IP address “46.250.210.119” that does not exist on this server.

2:01:27 PM Enqueueing 10 domains (1 zone) for local DNS DCV …

2:01:27 PM Analyzing “mlitterhub”’s domains …

2:01:27 PM Analyzing “marinelitterhub.com” (website) …

2:01:27 PM ERROR TLS Status: Defective

ERROR Defect: NO_SSL: No SSL certificate is installed.

2:01:27 PM Attempting to ensure the existence of necessary CAA records …

2:01:27 PM No CAA records were created.

2:01:27 PM Verifying 10 domains’ management status …

Verifying “Let’s Encrypt™”’s authorization on 10 domains via DNS CAA records …

2:01:27 PM “www.marinelitterhub.com” is managed.

“whm.marinelitterhub.com” is managed.

“webdisk.marinelitterhub.com” is managed.

“cpcontacts.marinelitterhub.com” is managed.

“webmail.marinelitterhub.com” is managed.

“mail.marinelitterhub.com” is managed.

“cpcalendars.marinelitterhub.com” is managed.

“cpanel.marinelitterhub.com” is managed.

CA authorized: “marinelitterhub.com”

CA authorized: “*.marinelitterhub.com”

CA authorized: “whm.marinelitterhub.com”

CA authorized: “www.marinelitterhub.com”

CA authorized: “mail.marinelitterhub.com”

CA authorized: “webmail.marinelitterhub.com”

CA authorized: “cpcontacts.marinelitterhub.com”

CA authorized: “webdisk.marinelitterhub.com”

CA authorized: “cpcalendars.marinelitterhub.com”

CA authorized: “cpanel.marinelitterhub.com”

“Let’s Encrypt™” is authorized to issue certificates for 10 of this user’s 10 domains.

“marinelitterhub.com” is managed.

“*.marinelitterhub.com” is managed.

All of this user’s 10 domains are managed.

2:01:27 PM Performing HTTP DCV (Domain Control Validation) on 9 domains …

2:01:32 PM WARN Local HTTP DCV error (marinelitterhub.com): The system queried for a temporary file at “http://marinelitterhub.com/.well-known/acme-challenge/L1K551DEFE6AOA4X0K-QKT5EVP9IHSEK”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.

WARN Local HTTP DCV error (whm.marinelitterhub.com): The system failed to fetch the DCV (Domain Control Validation) file at “http://whm.marinelitterhub.com/.well-known/acme-challenge/A1GL3_908ME4LEW2SJ7I2ESRRNR2H0T9” because of an error: The system failed to send an HTTP (Hypertext Transfer Protocol) “GET” request to “http://whm.marinelitterhub.com/.well-known/acme-challenge/A1GL3_908ME4LEW2SJ7I2ESRRNR2H0T9” because of an error: Could not connect to 'whm.marinelitterhub.com:80': Connection timed out. The domain “whm.marinelitterhub.com” resolved to an IP address “2001:4da8:000c:0058:0000:0000:0000:0000” that does not exist on this server.

WARN Local HTTP DCV error (www.marinelitterhub.com): The system queried for a temporary file at “http://www.marinelitterhub.com/.well-known/acme-challenge/D-U0OPIU-S034AW491-DNBFJ63826ITB”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.

WARN Local HTTP DCV error (mail.marinelitterhub.com): The system queried for a temporary file at “http://mail.marinelitterhub.com/.well-known/acme-challenge/LZJPK40VUN7S19IMOT_7VX-8IVCZ_C6S”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist. The domain “mail.marinelitterhub.com” resolved to an IP address “46.250.221.12” that does not exist on this server.

WARN Local HTTP DCV error (cpanel.marinelitterhub.com): The system failed to fetch the DCV (Domain Control Validation) file at “http://cpanel.marinelitterhub.com/.well-known/acme-challenge/GGVY-1P2G2W7_O_0KVFCALHLAMTRXCZS” because of an error (cached): Could not connect to '2001:4da8:000c:0058:0000:0000:0000:0000:80': Connection timed out.

WARN Local HTTP DCV error (webdisk.marinelitterhub.com): The system failed to fetch the DCV (Domain Control Validation) file at “http://webdisk.marinelitterhub.com/.well-known/acme-challenge/3VCZXBUTQX2EENV8NX9D57YJH9H9V3UX” because of an error (cached): Could not connect to '2001:4da8:000c:0058:0000:0000:0000:0000:80': Connection timed out.

WARN Local HTTP DCV error (webmail.marinelitterhub.com): The system failed to fetch the DCV (Domain Control Validation) file at “http://webmail.marinelitterhub.com/.well-known/acme-challenge/7-LC14AKRJ2-DAPNPCL27_J9_725-5RG” because of an error (cached): Could not connect to '2001:4da8:000c:0058:0000:0000:0000:0000:80': Connection timed out.

WARN Local HTTP DCV error (cpcontacts.marinelitterhub.com): The system failed to fetch the DCV (Domain Control Validation) file at “http://cpcontacts.marinelitterhub.com/.well-known/acme-challenge/317642HLNPMFO_4YCFPCXRGY-X8_XN9_” because of an error (cached): Could not connect to '2001:4da8:000c:0058:0000:0000:0000:0000:80': Connection timed out.

WARN Local HTTP DCV error (cpcalendars.marinelitterhub.com): The system failed to fetch the DCV (Domain Control Validation) file at “http://cpcalendars.marinelitterhub.com/.well-known/acme-challenge/CBJS8BDJNBVS4OM_W6_ZVFV01M9F1P9H” because of an error (cached): Could not connect to '2001:4da8:000c:0058:0000:0000:0000:0000:80': Connection timed out.

2:01:32 PM Enqueueing 10 domains (1 zone) for local DNS DCV …

2:01:32 PM Publishing DNS changes for local DNS DCV (2 zones) …

Querying DNS to confirm DCV changes …

2:01:39 PM Processing “bluecar”’s local DCV results …

2:01:39 PM ERROR Local DNS DCV error (bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (whm.bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (www.bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (mail.bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (cpanel.bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (webdisk.bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (webmail.bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (cpcontacts.bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (cpcalendars.bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (*.bluecarbon.no): The DNS query to “_cpanel-dcv-test-record.bluecarbon.no” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

Analyzing “bluecarbon.no”’s DCV results …

2:01:39 PM ERROR Impediment: TOTAL_DCV_FAILURE: Every domain failed DCV.

2:01:39 PM The system has completed “bluecar”’s AutoSSL check.

2:01:39 PM Processing “mlitterhub”’s local DCV results …

2:01:39 PM ERROR Local DNS DCV error (marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (whm.marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (www.marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (mail.marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (cpanel.marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (webdisk.marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (webmail.marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (cpcontacts.marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (cpcalendars.marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

ERROR Local DNS DCV error (*.marinelitterhub.com): The DNS query to “_cpanel-dcv-test-record.marinelitterhub.com” for the DCV challenge returned no “TXT” record that matches the value “_cpanel-dcv-test-record=jLYhsvpfGf9m1OHs85lrIX1Fgl2EAtwENvMOsNkuNnpdHxpTQk995Td3kioT6lZQ”.

Analyzing “marinelitterhub.com”’s DCV results …

2:01:39 PM ERROR Impediment: TOTAL_DCV_FAILURE: Every domain failed DCV.

2:01:39 PM The system has completed “mlitterhub”’s AutoSSL check.

2:01:39 PM The system finished checking 2 users.

Emptying Let’s Encrypt’s DCV (Domain Control Validation) cache …

My web server is (include version): WHM Cpanel- 92.08

The operating system my web server runs on is (include version): CENTOS 7.9 kvm [catalina]

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

2 Likes

Your domain has an IPv6 address in DNS, but the address is not assigned to your website in WHM/cPanel.

You need to either remove the IPv6 address from your domain's DNS, or assign the IPv6 address (https://docs.cpanel.net/whm/ip-functions/assign-ipv6-address/).

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.