I'm trying to create a wildcard certificate via cert-manager on kubernetes and this is what I get when I run kubectl describe challenges
Status:
Presented: true
Processing: true
Reason: Waiting for DNS-01 challenge propagation: DNS record for "zencluster.org" not yet propagated
State: pendingHave you verified that the NOTIFY chain is working properly from your master DNS server to the various downstream servers for your site?
e.g. for each of your DNS servers, try something like,
~$ dig @ns-2.example.com example.com soa | \
grep '^[a-z].*IN.*SOA' | awk '{print $7}'
That should get you the serial number being output by "ns-2" (though you might need to play with the $7 value). Compare that against your master server and ensure they're all in sync.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.