• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Resolved False positive error messages about Let's Encrypt certificates?

V

vic666

New Pleskian
On a daily basis, I keep receiving the following email for one of my subscriptions (changed domain to example.com, all else left original):

Could not secure domains of Vik@GJ (login 123) with Let`s Encrypt certificates. Please log in to Plesk and secure the domains listed below manually.

Securing of the following domains has failed:

<none>

The following domains have been secured without some of their Subject Alternative Names:

<none>

Could not renew Let`s Encrypt certificates for Vik@GJ (login 123). Please log in to Plesk and renew the certificates listed below manually.

Renewal of the following Let`s Encrypt certificates has failed:


* 'Lets Encrypt example.com' [days to expire: 20]

[-] *.example.com

[-] example.com

Invalid response from https://acme-v02.api.letsencrypt.org/acme/authz-v3/6117876329.

Details:

Type: urn:ietf:params:acme:error:unauthorized

Status: 403

Detail: Incorrect TXT record "uuMsEWy9FN6o_bG54RPR8e3ZcAkHyf7jUp07zwPqaic" found at _acme-challenge.example.com

The following Let`s Encrypt certificates have been renewed without some of their Subject Alternative Names:

<none>
Click to expand...

This seems to be quite in contrast to what is actually shown to me in the panel:

1595860213540.png

What can I do about this? I already did reissue the certificate once about a week ago, and yet I keep getting these warnings.
 
Hi Igor, I see. Honestly, I wasn't even aware of how Let's Encrypt works. If the challenge changes every month, then it's clear why direct access to the DNS zone is needed.

Is there an easy way to transfer all dns records from the external server to Plesk?
 
You must log in or register to reply here.

Similar threads

S
Issue Let's Encrypt/SSL It! empty domain name error
Replies
8
Views
1K
SilentWarrior
S
R
Issue Problems Issuing a Let's Encrypt Certificate
Replies
6
Views
890
Robin McDermott
R
W
Question Wanted: Best practice for certificates (Lets Encrypt) two separate Plesk servers for www and mail
2
Replies
20
Views
2K
W4ru
W
M
Issue Let's Encrypt Bulk Domain Renewal
Replies
4
Views
505
MacGyver
M
K
Question Renewing Let's Encrypt with external DNS servers
Replies
5
Views
2K
klowet
K
Back
Top