• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Question let's encrypt TXT record and nameserver-problem

S

SiegbertG

Basic Pleskian
Server operating system version
Ubuntu 24.04
Plesk version and microupdate number
Plesk Obsidian Version 18.0.66
Hello,

I am using the plesk DNS bind and Plesk nameserver for a subdomain. To create a cetificate let's encrypt needs a TXT-record _acme-challenge.
For a new domain/subdomain I always have to create such a TXT in the adminitration-panel of the server (using the nameserver of the provider). If I create the TXT-record only in the Plesk DNS-settings I get a message, that there is a wrong TXT-record "google-site-verification" (that is from the domain, not from subdomain and is located in the DNS-settings of the provider) or that no _acme-challenge TXT record could be found.

What am I doing wrong here?

As a workaround I create the same subdomain in the providers panel, setup the TXT-record and delete the subdomain in the provider panel after getting the let's encrypt-certifcate. But I think this is not the way it schould work :).

best regards
Siegbert
 
Your DNS setup isn't entirely clear to me, but it sounds like you're managing your DNS externally. If that's the case you'll (manually) need to add the TXT-record _acme-challenge to the external DNS.

Note that DNS verification for Let's Encrypt certificates is only needed when using the wildcard DNS option. If you re-issue a certificate in Plesk and disable the wildcard option the verification is done via HTTP.
 
Thanks a lot - in most cases the wildcard option is not neccessary so I can disable it and use HTTP-verification.
 
You must log in or register to reply here.

Similar threads

O
Issue Wrong TXT record implementation in Plesk DNS
Replies
6
Views
3K
Sebahat.hadzhi
Sebahat.hadzhi
D
Question no TXT challenge proposed in Let's encrypt
Replies
2
Views
774
djovanov
D
D
Question Renewing Let's encrypt automatically
Replies
6
Views
2K
iainh
I
carlsson
Question Incorrect TXT record "f-SabDKKcvWsjfiCn08yEbfdWiafvFo6" found at _acme-challenge.mydomain.com - What am I doing wrong?
Replies
9
Views
3K
scsa20
scsa20
K
Question Renewing Let's Encrypt with external DNS servers
Replies
5
Views
2K
klowet
K
Back
Top