Cannot remove phantom TXT records for Let's Encrypt challenge

What is the name of the domain?

fitc.eu.org

What is the issue you’re encountering

I need to renew my LE certificate, so I added some TXT records. But it seems like there are some ghost records assigned to the address _acme-challenge.. I cannot see and remove them.

What steps have you taken to resolve the issue?

I tried using the API to delete all my records, disable Universal SSL, but everything continues as before. Is there any way I can fix this?

What are the steps to reproduce the issue?

Those records are generated whenever I re-enable Universal SSL.

These extra records shouldn’t cause any problems. Cloudflare creates them, as you noticed, for the Universal SSL certificate.

Don’t do that to often. If you do, your domain will get rate limited.

I waited for over 2 months, those records still exist…

Do these records cause you any problems or why do you want to get rid of them?

I can’t renew my ssl, because the records used for authentication have been overwritten by records generated by cloudflare

These records shouldn’t interfere with those for your own LE certificate.

Is the record that you added not showing or what’s the problem? Having multiple acme-challenge record should not be a problem.

For example: “Incorrect TXT record “nQ2WhPrfi5aLKd0csbUaqguc0vRndRXhCyAewMDBnRU” (and 5 more) found at _acme-challenge.fitc.eu.org”
My records were actually added, but the records created by cf were still there, and I couldn’t get my certificate until I temporarily used another dns service

What software is that you are using? And do you actually need a public certificate or would an Origin Certificate also be ok? It can only be used for proxied hostnames.

This topic was automatically closed after 15 days. New replies are no longer allowed.