• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • (Plesk for Windows):
    MySQL Connector/ODBC 3.51, 5.1, and 5.3 are no longer shipped with Plesk because they have reached end of life. MariaDB Connector/ODBC 64-bit 3.2.4 is now used instead.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Question let's encrypt TXT record and nameserver-problem

S

SiegbertG

Basic Pleskian
Server operating system version
Ubuntu 24.04
Plesk version and microupdate number
Plesk Obsidian Version 18.0.66
Hello,

I am using the plesk DNS bind and Plesk nameserver for a subdomain. To create a cetificate let's encrypt needs a TXT-record _acme-challenge.
For a new domain/subdomain I always have to create such a TXT in the adminitration-panel of the server (using the nameserver of the provider). If I create the TXT-record only in the Plesk DNS-settings I get a message, that there is a wrong TXT-record "google-site-verification" (that is from the domain, not from subdomain and is located in the DNS-settings of the provider) or that no _acme-challenge TXT record could be found.

What am I doing wrong here?

As a workaround I create the same subdomain in the providers panel, setup the TXT-record and delete the subdomain in the provider panel after getting the let's encrypt-certifcate. But I think this is not the way it schould work :).

best regards
Siegbert
 
Your DNS setup isn't entirely clear to me, but it sounds like you're managing your DNS externally. If that's the case you'll (manually) need to add the TXT-record _acme-challenge to the external DNS.

Note that DNS verification for Let's Encrypt certificates is only needed when using the wildcard DNS option. If you re-issue a certificate in Plesk and disable the wildcard option the verification is done via HTTP.
 
Thanks a lot - in most cases the wildcard option is not neccessary so I can disable it and use HTTP-verification.
 
You must log in or register to reply here.

Similar threads

O
Issue Wrong TXT record implementation in Plesk DNS
Replies
6
Views
3K
Sebahat.hadzhi
Sebahat.hadzhi
D
Question no TXT challenge proposed in Let's encrypt
Replies
2
Views
653
djovanov
D
D
Question Renewing Let's encrypt automatically
Replies
6
Views
1K
iainh
I
carlsson
Question Incorrect TXT record "f-SabDKKcvWsjfiCn08yEbfdWiafvFo6" found at _acme-challenge.mydomain.com - What am I doing wrong?
Replies
9
Views
2K
scsa20
scsa20
K
Question Renewing Let's Encrypt with external DNS servers
Replies
5
Views
2K
klowet
K
Back
Top