- Plesk for Linux
- Plesk for Windows
Let's Encrypt certificate cannot be installed with one of the following errors:
Invalid response from https://acme-v01.api.letsencrypt.org/acme/authz/DEADBEEFMwVU3eZxfBU9-PRUcd51tflRLJD7CoBTxrQ.
Detail: DNS problem: SERVFAIL looking up A for example.com
Error: Could not issue a Let's Encrypt SSL/TLS certificate for example.com. Authorization for the domain failed.
Invalid response from https://acme-v01.api.letsencrypt.org/acme/authz/0VWhDoTjEzzwPXNzPHd-zO73YAdXa8qgyac7eEiPQqY.
Detail: unknownHost :: No valid IP addresses found for example.com
DNS problem: NXDOMAIN looking up A for example.com
- check that a DNS record exists for this domain
example.commay be created recently.
Domain name cannot be resolved against some of global DNS resolvers:
# dig example.com @18.104.22.168 +short
Unable to issue the certificate for example.com with the following error message found at
ERR [extension/sslit] Failed to renew certificate of domain 'example.com': Invalid response from https://acme-v02.api.letsencrypt.org/acme/authz-v3/186606762567. Details: Type: urn:ietf:params:acme:error:dns Status: 400 Detail: no valid A records found for example.com; no valid AAAA records found for example.com
A type record does not exist or DNS propagation is not completed.
A DNS record type for the domain:
- Go to the online NS record checker (for instance this one: Online tool for NS server check);
- Check if the NS servers are the same with the Domains > exmple.com > DNS Settings. If they are, then your DNS is managed by Plesk.
If there are not matching or the option Domains > example.com > DNS Settings is absent, thus, 3-d party DNS server is used (i.e. DNS provider).
Add record (type A) for the
example.comin Plesk > Domains > example.com > DNS Settings > Add Record:
Contact the domain provider in order to add appropriate
Note: If record has been already added, but the error persist, it is required to wait for a while. DNS propagation may take up to 72 hours. Use this tool in order to check global DNS propagation: DNS Propagation Check.