Certs won't renew - HELP
-
No not yet - I have no idea how that would have happened. I currently do not have direct access to DNS records.
wrote on Dec 28, 2024, 8:34 PM last edited by@stevespaw said in Certs won't renew - HELP:
No not yet - I have no idea how that would have happened. I currently do not have direct access to DNS records.
I assume this entry wasn't cleared properly after the last certificate was issued and is now preventing you from getting a new one
-
wrote on Dec 30, 2024, 5:40 PM last edited by
OK I have access to the GoDaddy account _ have deleted the TXT record and restarted - I keep seeing the TXT record change, buy I get errors that they don't match. This is now a big issue I need to solve, but I am not very knowledgeable on LetsEncrypt. Where do I go from here?
-
wrote on Dec 30, 2024, 5:44 PM last edited by
If you set up a new sub domain, do the certs work ok?
If so, then you can move the app from its current sub/domain to another temporary one. Validate it all works. Then move it back for a fresh set of certs.
-
If you set up a new sub domain, do the certs work ok?
If so, then you can move the app from its current sub/domain to another temporary one. Validate it all works. Then move it back for a fresh set of certs.
wrote on Dec 30, 2024, 5:53 PM last edited byIf you set up a new sub domain, do the certs work ok?
within GoDaddy or a new app in Cloudron?
BTW even the main "my.xyz.com" is also failing. Currently 4 apps installed in Cloudron.
-
If you set up a new sub domain, do the certs work ok?
within GoDaddy or a new app in Cloudron?
BTW even the main "my.xyz.com" is also failing. Currently 4 apps installed in Cloudron.
wrote on Dec 30, 2024, 6:01 PM last edited by@stevespaw Cloudron.. as idk how you set up your DNS. Most folks here choose to have it automated by Cloudron.
For example, if you configure GoDaddy to use CloudFlare for DNS, then you can have Cloudron effortlessly auto manage DNS entries via Cloudflare integration.
-
wrote on Dec 30, 2024, 6:07 PM last edited by
Yes we have all of our Cloudrons DNS automated - We have quite a few paid instances. This one instance is failing the automated renewal. That is the issue.
-
wrote on Dec 30, 2024, 6:24 PM last edited by
Ok, so it's Cloudron specific, have you tried rebooting for any updates that may be needed?
-
wrote on Dec 30, 2024, 6:31 PM last edited by
yes.. I tried that 2 days ago when this started happening.
-
wrote on Dec 30, 2024, 6:43 PM last edited by
Ouch this is bad news. We have custom apps that directly work with API's in these cloudron apps.
-
Ouch this is bad news. We have custom apps that directly work with API's in these cloudron apps.
wrote on Dec 30, 2024, 7:00 PM last edited by@stevespaw they'll still work, just on a different cloudron, right?
Containers for a reason.
-
wrote on Dec 30, 2024, 7:24 PM last edited by
Yes it is possible to migrate to another Cloudron, but what's to say that the SSL will work on a different cloudron to the same domain that is having issues?
-
Yes it is possible to migrate to another Cloudron, but what's to say that the SSL will work on a different cloudron to the same domain that is having issues?
wrote on Dec 30, 2024, 7:26 PM last edited by@stevespaw testing.
-
So we have looked into this and it appears that LetsEncrypt does not see the TXT records (reporting a NXDOMAN) for those when directly talking to the GoDaddy nameservers. We have set the DNS backend to manual to fallback to the HTTP acme flow. That way the certs were refreshed fine.
Lets see if other GoDaddy users also face this, or if this is just a hiccup for those associated nameservers.
-
Unfortunately, we have lost the ability to test GoDaddy since they disabled API use for all customers having < 10 domains or something. See also https://www.reddit.com/r/godaddy/comments/1chs1j8/godaddy_access_denied_via_apicall/ . If anyone can reproduce this and can give us a test set up, happy to debug further.
-
wrote on Jan 1, 2025, 5:23 PM last edited by
Who uses gd????
-
-