![]() ![]() 12:59:39.113 -05:00 BeginCertificateOrder: creating/retrieving order. ![]() 12:59:39.113 -05:00 Beginning certificate order for requested domains 12:59:39.113 -05:00 Requested identifiers to include on certificate: 12:59:39.112 -05:00 Beginning Certificate Request Process: using ACME Provider:Certes Is this expected in this context of having the '_acme-challenge.x' as a zone of its own? Is this an LE concern or a Certify the Web concern?Īzure DNS API :: DNS TXT Record Created: _ in root domain _ with value: dv4q9bCSBJHQ8DcSwLk_mZLTFGbwILL_hLTVh_R60_Q But it fails when the LE cert is requested. I can run a test in the Certify the Web app - and the TXT record is created as expected. Suggestions aside - as I have known workarounds - my question remains. I've opened a case with MS and posting here on the chance this has a simple explanation. I can generate a cert without fail if I do not create a child zone - using same service principal. When I attempt to issue a cert - it fails with error:ĭNS update failed: Azure DNS API :: Operation returned an invalid status code 'NotFound' If I run the 'test' function in the app - it creates and deletes the expected TXT record in the child domain without issue. In order to limit the access of this service principal I created a child domain (_). I am using Certify The Web desktop app for testing/validation of DNS challenges against Azure hosted DNS via a service principal. output of certbot -version or certbot-auto -version if you're using Certbot): I'm using a control panel to manage my site (no, or provide the name and version of the control panel): I can login to a root shell on my machine (yes or no, or I don't know): N/A ![]() My hosting provider, if applicable, is: N/A (azure for DNS) The operating system my web server runs on is (include version): N/A DNS update failed: Azure DNS API :: Operation returned an invalid status code 'NotFound' I ran this command: I'm using Certify The Web app crt.sh | ), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. Note: you must provide your domain name to get help. Please fill out the fields below so we can help you better. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |