Resolved False positive error messages about Let's Encrypt certificates?

[vic666]

On a daily basis, I keep receiving the following email for one of my subscriptions (changed domain to example.com, all else left original):

Could not secure domains of Vik@GJ (login 123) with Let`s Encrypt certificates. Please log in to Plesk and secure the domains listed below manually.

Securing of the following domains has failed:

<none>

The following domains have been secured without some of their Subject Alternative Names:

<none>

Could not renew Let`s Encrypt certificates for Vik@GJ (login 123). Please log in to Plesk and renew the certificates listed below manually.

Renewal of the following Let`s Encrypt certificates has failed:


* 'Lets Encrypt example.com' [days to expire: 20]

[-] *.example.com

[-] example.com

Invalid response from https://acme-v02.api.letsencrypt.org/acme/authz-v3/6117876329.

Details:

Type: urn:ietfarams:acme:error:unauthorized

Status: 403

Detail: Incorrect TXT record "uuMsEWy9FN6o_bG54RPR8e3ZcAkHyf7jUp07zwPqaic" found at _acme-challenge.example.com

The following Let`s Encrypt certificates have been renewed without some of their Subject Alternative Names:

<none>

This seems to be quite in contrast to what is actually shown to me in the panel:



What can I do about this? I already did reissue the certificate once about a week ago, and yet I keep getting these warnings.

 

[IgorG]

I think this problem is addressed in the following KB - Unable to issue Let's Encrypt certificate when external DNS server is used: Incorrect TXT record. Does this solve your issue?

 

[vic666]

Hi Igor, I see. Honestly, I wasn't even aware of how Let's Encrypt works. If the challenge changes every month, then it's clear why direct access to the DNS zone is needed.

Is there an easy way to transfer all dns records from the external server to Plesk?