[SOLVED] Acme using GoDaddy DNS - Error add txt for domain

[aleksandarm]

Hello Everyone,

I'm having a difficulties to setup the wildcard certificate generation using the Letsencrypt plugin and GoDaddy DNS service. Before going to the details, you should know that parameters I'm using do work while calling the acme.sh script on a Linux box.

Once the _acme-challenge.domain.com (in my case the domain is different) record is created (confirmed through the GoDaddy interface, and nslookup), acme.sh script will not be able to resolve the newly created record, and will end up throwing an error:

[Thu Aug  9 11:15:00 CEST 2018] PUT
[Thu Aug  9 11:15:00 CEST 2018] _post_url='https://api.godaddy.com/v1/domains/domain.com/records/TXT/_acme-challenge'
[Thu Aug  9 11:15:00 CEST 2018] _CURL='curl -L --silent --dump-header /var/etc/acme-client/home/http.header  -g '
[Thu Aug  9 11:15:01 CEST 2018] _ret='0'
[Thu Aug  9 11:15:01 CEST 2018] Add txt record error.
[Thu Aug  9 11:15:01 CEST 2018]
[Thu Aug  9 11:15:01 CEST 2018] Error add txt for domain:_acme-challenge.domain.com
[Thu Aug  9 11:15:01 CEST 2018] pid
[Thu Aug  9 11:15:01 CEST 2018] No need to restore nginx, skip.
[Thu Aug  9 11:15:01 CEST 2018] _clearupdns
[Thu Aug  9 11:15:01 CEST 2018] skip dns.
[Thu Aug  9 11:15:01 CEST 2018] _on_issue_err
[Thu Aug  9 11:15:01 CEST 2018] Please check log file for more details: /var/log/acme.sh.log

I'm using the DNS method, the Common Name of "domain.com" with Alternative Name of "*.domain.com". Do you have any suggestions how can I fix this?

Thank you in advance,
Aleksandar

[aleksandarm]

After updating to 18.7.1, acme client/plugin works with GoDaddy.

Regards,
Aleksandar

[nikkon]

i have the exact same issue with my domain hosted in cloudflare.
how did you manage to make it work?

[Mellou]

i have the exact same issue with my domain hosted in cloudflare.
how did you manage to make it work?

Same here, having an issue with Cloudflare API. Using plugin version 1.31. The last time, renewal worked (that was on March 1st). Also, on another instance, renewal worked as recently as April 24.

Since May 1st however, the following error occurs:

Code: [Select]

[Wed May 13 00:00:06 CEST 2020] _on_issue_err
[Wed May 13 00:00:06 CEST 2020] Error add txt for domain:_acme-challenge.***************
[Wed May 13 00:00:06 CEST 2020] Error

I tried resetting the client and reinstalling the plugin, without any effect.

Any ideas?

[pandabrain]

I had the same issue.
Already posted about it in another thread:
EDIT: The version in this quote is the acme.sh version, not the plugin version for opnsense. As of now the plugin doesn't use the newest version and needs manual updating.

Similar thing with cloudflare DNS validation, which stopped working about 2 weeks ago due to some faulty regex.
It also got fixed with v2.8.6:
https://github.com/acmesh-official/acme.sh/issues/2888

An update would be much appreciated.

I also tested it by updating /usr/local/share/examples/acme.sh/dnsapi/dns_cf.sh
with dnsapi/dns_cf.sh from the 2.8.6 release.
(https://github.com/acmesh-official/acme.sh/releases/tag/2.8.6)
It works fine now.

Maybe someone should contact the package maintainer? His/her email address is listed in the package list in opnsense, I just don't want to bother anyone so i didn't write a mail. (Also I am a free user, so no support for me anyway.)

Let me know if you need any further help.