Acme.sh: Incorrect TXT record for base + wildcard with Digital Ocean API
I've just installed the script and got the error below with DigitalOcean. Detailed log attached.
# /root/.acme.sh/acme.sh --issue --dns dns_dgon -d cryptoclimate.io -d "*.cryptoclimate.io"
[Fri Dec 13 03:51:19 EST 2019] Multi domain='DNS:cryptoclimate.io,DNS:*.cryptoclimate.io'
[Fri Dec 13 03:51:19 EST 2019] Getting domain auth token for each domain
[Fri Dec 13 03:51:20 EST 2019] Getting webroot for domain='cryptoclimate.io'
[Fri Dec 13 03:51:20 EST 2019] Getting webroot for domain='*.cryptoclimate.io'
[Fri Dec 13 03:51:20 EST 2019] Adding txt value: DhxmA5BNdWAibUdo2zFhYEedJszcmBRMjFmixw4V1UA for domain: _acme-challenge.cryptoclimate.io
[Fri Dec 13 03:51:20 EST 2019] Using digitalocean dns validation - add record
[Fri Dec 13 03:51:21 EST 2019] The txt record is added: Success.
[Fri Dec 13 03:51:21 EST 2019] Adding txt value: 4Xtnf8ZHGCzky7SzhyjcpkyhjIiU1rg-nK35Pndx-cc for domain: _acme-challenge.cryptoclimate.io
[Fri Dec 13 03:51:21 EST 2019] Using digitalocean dns validation - add record
[Fri Dec 13 03:51:22 EST 2019] The txt record is added: Success.
[Fri Dec 13 03:51:22 EST 2019] Let's check each dns records now. Sleep 20 seconds first.
[Fri Dec 13 03:51:43 EST 2019] Checking cryptoclimate.io for _acme-challenge.cryptoclimate.io
[Fri Dec 13 03:51:44 EST 2019] Domain cryptoclimate.io '_acme-challenge.cryptoclimate.io' success.
[Fri Dec 13 03:51:44 EST 2019] Checking cryptoclimate.io for _acme-challenge.cryptoclimate.io
[Fri Dec 13 03:51:44 EST 2019] Domain cryptoclimate.io '_acme-challenge.cryptoclimate.io' success.
[Fri Dec 13 03:51:44 EST 2019] All success, let's return
[Fri Dec 13 03:51:44 EST 2019] Verifying: cryptoclimate.io
[Fri Dec 13 03:51:47 EST 2019] cryptoclimate.io:Verify error:Incorrect TXT record
[Fri Dec 13 03:51:47 EST 2019] Removing DNS records.
[Fri Dec 13 03:51:47 EST 2019] Removing txt: DhxmA5BNdWAibUdo2zFhYEedJszcmBRMjFmixw4V1UA for domain: _acme-challenge.cryptoclimate.io
[Fri Dec 13 03:51:47 EST 2019] Using digitalocean dns validation - remove record
[Fri Dec 13 03:51:48 EST 2019] Removed: Success
[Fri Dec 13 03:51:48 EST 2019] Removing txt: 4Xtnf8ZHGCzky7SzhyjcpkyhjIiU1rg-nK35Pndx-cc for domain: _acme-challenge.cryptoclimate.io
[Fri Dec 13 03:51:48 EST 2019] Using digitalocean dns validation - remove record
[Fri Dec 13 03:51:50 EST 2019] Removed: Success
[Fri Dec 13 03:51:50 EST 2019] Please add '--debug' or '--log' to check more details.
[Fri Dec 13 03:51:50 EST 2019] See: https://github.com/Neilpang/acme.sh/wiki/How-to-debug-acme.sh
dandv
All 5 comments
Seperate those two requests, run acme for each one.
And technically you don't need the first cryptoclimate.io as you are requesting a wildcard for that domain.
rayzilt
on 5 Jan 2020
👎4
Same with me. sometimes I get just only one TXT record for the base and wildcard domains , and it works well , but sometimes I get two TXT records for the same one _acme-challenge host and it will fail .
RifeWang
on 6 Jan 2020
@Rayzilt Can not seperate to two requests , and the base domain is needed , because we want to use the same one cert file for base and wild domain .
RifeWang
on 6 Jan 2020
👍3
First issue it failed , try again it will success.
RifeWang
on 7 Jan 2020
The same issue with yandex_dns
karmicdude
on 14 Dec 2020
Was this page helpful?
0 / 5 - 0 ratings
Related issues
mskian
路
3Comments
feiyu0
路
4Comments
simkimsia
路
5Comments
MarcusWolschon
路
3Comments
xiagw
路
3Comments
Most helpful comment
@Rayzilt Can not seperate to two requests , and the base domain is needed , because we want to use the same one cert file for base and wild domain .