Articles in this section

See more

Unable to issue Let's Encrypt certificate for securing Plesk page if wildcard subdomain is present on the server

Avatar
Pavel Rozental
Updated
Follow

Applicable to:

  • Plesk 12.5
  • Plesk Onyx

Symptoms

  • Unable to issue Let's Encrypt certificate for securing Plesk page:

    PLESK_ERROR: Error: Could not issue a Let's Encrypt SSL/TLS certificate for example.com. Authorization for the domain failed. Invalid response from https://acme-v01.api.letsencrypt.org/acme/authz/JwiJ1oPnjy-8ahXSzgbObDNjn9CrcIjzs87_H_7wEz8. Details:Type: urn:acme:error:unauthorized Status: 403. Detail: Invalid response from http://example.com/.well-known/acme-challenge/BjH29Kw9Ttp5bV1QV2kCFpAsGWEfONGUu4iY3bR_GqM:


  • Plesk server hostname is any-sub-domain.example.com. In the same time there is domain example.com with wildcard subdomain *.example.com.

Cause

It is a bug in the Let's Encrypt with ID EXTLETSENC-383 . The fix is planned to be included in one the next updates of the extension.

Resolution

The only workaround is to disable wildcard subdomain *.example.com for the time of issuing certificate for Plesk, however this will break panel certificate future renewal.

To disable wildcard subdomain go to Domains > *.example.com > Disable.

Screenshot_1.png

Comments

0 comments

Please sign in to leave a comment.

Have more questions? Submit a request

Related articles