Unable to issue Let's Encrypt certificate: Your domain in Plesk is hosted on the IP address(es):, but the DNS challenge used another IP address:




  • Avatar
    Fouad Ahmed Fouad

    I have the web sites hosted on another server, and webmail.example.com can't be secured because Plesk can't issue the SSL as the web site is not hosted on the same server, why Plesk doesn't automatically try DNS challenge instead of using the web site to identify the domain in question, so we can still secure the webmail and SMTP services, can you help?

    Comment actions Permalink
  • Avatar
    Ivan Postnikov

    Hello Fouad Ahmed Fouad

    Thank you for sharing your user experience.

    This approach was the one used by Let's Encrypt. DNS challenge was added only with introduction of Wildcard certificated by Let's Encrypt not long ago.

    Consider creating a feature suggestion at Plesk user-voice.


    Comment actions Permalink
  • Avatar
    Tolani deinde

    hello i am getting the following email:

    The following domains have been secured without some of their Subject Alternative Names:


    Could not renew Let`s Encrypt certificates for t (login tdlinksc). Please log in to Plesk and renew the certificates listed below manually.
    Renewal of the following Let`s Encrypt certificates has failed:

    * 'Lets Encrypt tdlinks.co.uk' [days to expire: 16]
    [-] *.tdlinks.co.uk
    [-] tdlinks.co.uk

    Invalid response from https://acme-v02.api.letsencrypt.org/acme/authz-v3/10544354248.
    Type: urn:ietf:params:acme:error:unauthorized
    Status: 403
    Detail: Invalid response from http://tdlinks.co.uk/.well-known/acme-challenge/wgV9kmKBb00GWN09xnTV6KOc5G2xE5e-i3rLGf9Zi40 []: 404

    The following Let`s Encrypt certificates have been renewed without some of their Subject Alternative Names:

    What should i do?

    Comment actions Permalink

Please sign in to leave a comment.

Have more questions? Submit a request