无法正常申请证书 #4982
-
联系方式1Panel 版本v1.9.2 问题描述一直会卡在 重现步骤
期待的正确结果正常申请证书,而不是卡在 相关日志输出2023/12/24 04:52:18 开始申请证书,域名 [*.vrczh.com,vrczh.com] 申请方式 [DNS 自动] DNS 账号 [DNSPod] 厂商 [DnsPod]
2023/12/24 04:52:18 [INFO] [*.vrczh.com, vrczh.com] acme: Obtaining bundled SAN certificate
2023/12/24 04:52:18 [INFO] [*.vrczh.com] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/***
2023/12/24 04:52:18 [INFO] [vrczh.com] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/***
2023/12/24 04:52:18 [INFO] [*.vrczh.com] acme: use dns-01 solver
2023/12/24 04:52:18 [INFO] [vrczh.com] acme: Could not find solver for: tls-alpn-01
2023/12/24 04:52:18 [INFO] [vrczh.com] acme: Could not find solver for: http-01
2023/12/24 04:52:18 [INFO] [vrczh.com] acme: use dns-01 solver
2023/12/24 04:52:18 [INFO] [*.vrczh.com] acme: Preparing to solve DNS-01
2023/12/24 04:52:22 [INFO] [vrczh.com] acme: Preparing to solve DNS-01
2023/12/24 04:52:24 [INFO] [*.vrczh.com] acme: Trying to solve DNS-01
2023/12/24 04:52:24 [INFO] [*.vrczh.com] acme: Checking DNS record propagation using [1.1.1.1:53]
2023/12/24 04:52:29 [INFO] Wait for propagation [timeout: 1h0m0s, interval: 5s]
2023/12/24 04:52:30 [INFO] [*.vrczh.com] acme: Waiting for DNS record propagation.
2023/12/24 04:52:35 [INFO] [*.vrczh.com] acme: Waiting for DNS record propagation.
2023/12/24 04:52:40 [INFO] [*.vrczh.com] acme: Waiting for DNS record propagation.
2023/12/24 04:52:45 [INFO] [*.vrczh.com] acme: Waiting for DNS record propagation.
2023/12/24 04:52:51 [INFO] [*.vrczh.com] acme: Waiting for DNS record propagation.
2023/12/24 04:52:53 [INFO] [prometheus.status.vrczh.org] acme: Waiting for DNS record propagation.
2023/12/24 04:52:56 [INFO] [*.vrczh.com] acme: Waiting for DNS record propagation.
2023/12/24 04:52:59 [INFO] [prometheus.status.vrczh.org] acme: Waiting for DNS record propagation.
2023/12/24 04:53:01 [INFO] [*.vrczh.com] acme: Waiting for DNS record propagation.
2023/12/24 04:53:04 [INFO] [prometheus.status.vrczh.org] acme: Waiting for DNS record propagation.
2023/12/24 04:53:06 [INFO] [*.vrczh.com] acme: Waiting for DNS record propagation.
2023/12/24 04:53:09 [INFO] [prometheus.status.vrczh.org] acme: Waiting for DNS record propagation. 附加信息环境信息
已经尝试过的解决方案
服务器 nslookup 结果root@***:~# nslookup
> set type=TXT
> _acme-challenge.vrczh.com
Server: 1.1.1.1
Address: 1.1.1.1#53
Non-authoritative answer:
_acme-challenge.vrczh.com text = "z2MfMmtgBoN6euGWvkhfxif42eD7hXTuZcreYmm8ir4"
_acme-challenge.vrczh.com text = "MA_EoGoS5SJ8CK_tWxBwOJ_AS_xtQj3zJUN9n7kTGhQ"
Authoritative answers can be found from: |
Beta Was this translation helpful? Give feedback.
Replies: 25 comments 1 reply
-
另外希望提供一个选项允许传入自定义的参数,方便排故。(如更换 lego 的 DNS 服务器或尝试使用类似于 |
Beta Was this translation helpful? Give feedback.
-
补充:
|
Beta Was this translation helpful? Give feedback.
-
补充: |
Beta Was this translation helpful? Give feedback.
-
Waiting for DNS record propagation 是查看 dns 解析是否生效 建议删除掉你的 DNS 的 TXT 解析 ,然后重试,1小时之后查看结果 |
Beta Was this translation helpful? Give feedback.
-
类似的问题,阿里云+*域名,来来回回删除/添加任务 + 调调后台解析,多搞几次试好了 |
Beta Was this translation helpful? Give feedback.
-
会超时,手动删除 TXT 解析记录重试无效 |
Beta Was this translation helpful? Give feedback.
-
目前尝试了直接把 TXT 记录修改为泛域名,一样不行 |
Beta Was this translation helpful? Give feedback.
-
貌似是 LEGO 库中对 DNS 解析生效校验的实现有问题,但是貌似可以通过添加 |
Beta Was this translation helpful? Give feedback.
-
各位大哥,有什么解决方案吗? 我也碰到了这个问题,而且似乎这个问题从1.7版本就有了,一直有。。。 同样的dnspod |
Beta Was this translation helpful? Give feedback.
-
感谢 @Misaka-L 提供的思路 |
Beta Was this translation helpful? Give feedback.
-
同样的问题,申请和续期都不行,我是Cloudflare DNS, 错误信息如下: [WARN] [xxxxx.com] acme: cleaning up failed: cloudflare: failed to find zone xxxxxx.com.: ListZonesContext command failed: Invalid request headers (6003) |
Beta Was this translation helpful? Give feedback.
-
论坛置顶有解决方案 |
Beta Was this translation helpful? Give feedback.
-
看了一下腾讯云的文档 和 lego 的文档 |
Beta Was this translation helpful? Give feedback.
-
v1.9.3 版本已发布 |
Beta Was this translation helpful? Give feedback.
-
最后还是没有看懂如何处理,版本已经是1.9.3 |
Beta Was this translation helpful? Give feedback.
-
确实现在还是有这个问题 |
Beta Was this translation helpful? Give feedback.
-
我也是,换了腾讯云的密钥,还是超时获取不到 |
Beta Was this translation helpful? Give feedback.
-
签发超时之后,选择重新签发。然后选逃过DNS检查(可能需要先去 DNSPod 控制台删除已经添加的 TXT 记录) |
Beta Was this translation helpful? Give feedback.
-
手动添加TXT记录吗,这个问题在下一版本能解决吗? |
Beta Was this translation helpful? Give feedback.
-
|
Beta Was this translation helpful? Give feedback.
-
一样的问题,真是无语 |
Beta Was this translation helpful? Give feedback.
-
一样的问题,太迷了这。 |
Beta Was this translation helpful? Give feedback.
-
一摸一样,现在还是遇到了这个问题,服了 |
Beta Was this translation helpful? Give feedback.
-
仍然存在此问题,提示[INFO] Wait for propagation [timeout: 1m0s, interval: 2s] |
Beta Was this translation helpful? Give feedback.
-
目前证书申请用的是第三方 lego 插件 其中的逻辑我们暂时无法更改
|
Beta Was this translation helpful? Give feedback.
目前证书申请用的是第三方 lego 插件 其中的逻辑我们暂时无法更改
目前已知可能会导致失败的原因