- Server operating system version
- Ubuntu 22.04.4 LTS
- Plesk version and microupdate number
- 18.0.59 Update #2
Hello, the letsencrypt cert for one of my domains failed to renew automatically and I cannot renew it manually. I get the following error in plesk when I try to assign the certificate:
I used let's debug and it gave me the following response:
Could not issue an SSL/TLS certificate for domain.com
Details
Could not issue a Let's Encrypt SSL/TLS certificate for domain.com. Authorization for the domain failed.
Details
Invalid response from https://acme-v02.api.letsencrypt.org/acme/authz-v3/333728792367.
Details:
Type: urn:ietfarams:acme:error:dns
Status: 400
Detail: 52.71.31.112: Fetching https://www.domain.com/.well-known/acme-challenge/IMcVNgKNtrCm6fdzjyyHISKCcVh3HaG_2D2NzVVKblE: DNS problem: server failure at resolver looking up A for www.domain.com; DNS problem: server failure at resolver looking up AAAA for www.domain.com
I used let's debug and it gave me the following response:
ANotWorking
ERROR
domain.com has an A (IPv4) record (52.71.31.112) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
A timeout was experienced while communicating with domain.com/52.71.31.112: Get "https://www.domain.com/.well-known/acme-challenge/letsdebug-test": context deadline exceeded
Trace:
@0ms: Making a request to http://domain.com/.well-known/acme-challenge/letsdebug-test (using initial IP 52.71.31.112)
@0ms: Dialing 52.71.31.112
@205ms: Server response: HTTP 301 Moved Permanently
@205ms: Received redirect to https://www.domain.com/.well-known/acme-challenge/letsdebug-test
@10001ms: Experienced error: context deadline exceeded
IssueFromLetsEncrypt
ERROR
A test authorization for domain.com to the Let's Encrypt staging service has revealed issues that may prevent any certificate for this domain being issued.
52.71.31.112: Fetching https://www.domain.com/.well-known/acme-challenge/_O2_EUGrR_rahzBUa6NVQNf6iGJD4XURtKfV31Qe02k: DNS problem: server failure at resolver looking up A for www.domain.com; DNS problem: server failure at resolver looking up AAAA for www.domain.com