Custom domain certificate renewal

dennisreimann · August 2, 2022, 10:46am

Hello,

I am having issues with certificate renewal:
**SniCertificate::CertificateNonvalidError: Unable to verify challenge for .d11n.net: No TXT record found at _acme-challenge

Where do I get the token?

Thanks,
Dennis

Melvin · August 2, 2022, 2:54pm

Hi @dennisreimann,

Thanks for reaching out!

I show that a DNS Zone is setup for d11n.net, however it appears to be inactive:

dig d11n.net NS +trace | tail -n 6
d11n.net.      3600  IN NS dns4.p03.nsone.net.
d11n.net.      3600  IN NS dns1.p03.nsone.net.
d11n.net.      3600  IN NS dns3.p03.nsone.net.
d11n.net.      3600  IN NS dns2.p03.nsone.net.
;; Received 123 bytes from 45.87.158.53#53(ns3.inwx.eu) in 111 ms

The last line, Received 123 bytes, shows the name server that answered the above query which is ns3.inwx.eu and not Netlify name servers. The name servers used by Netlify are mentioned here.

If the DNS Zone is not being used you’ll want to delete it as it can cause issues with SSL.

This support guide has steps for how to detect and fix an inactive DNS Zone.

Let us know if you have any questions.

Topic		Replies	Views
SniCertificate::CertificateNonvalidError: Unable to verify challenge for tete-haute.fr Support netlify-dns-https-ssl	7	1664	May 21, 2023
SniCertificate::CertificateNonvalidError: Unable to verify challenge for : DNS problem: NXDOMAIN looking up TXT Support netlify-dns-https-ssl	8	1431	October 18, 2023
Not able to renew SSL Certificate from Netlify - SniCertificate::CertificateNonvalidError: Unable to verify challenge for molecules.om: Incorrect TXT record "3245" found at _acme-challenge Admin netlify-dns-https-ssl	6	1025	October 12, 2023
Issue with Certificate renewal Support netlify-dns-https-ssl	2	751	April 4, 2023
Problem with DNS Records, Lets encrypt certificate can't be renewed Support netlify-dns-https-ssl	2	379	December 7, 2022

Custom domain certificate renewal

Related topics