I do use LetsEncrypt for my domains, and have them on Cloudflare for other services. Problem is that every time LetsEncrypt needs to auto-renew the certificate for one of my domains I keep getting this error sent to me via automatic email notification from my CPanel from my webhosting provider. The email states: “AutoSSL would normally renew this certificate now, but 1 of the website’s secured domains just failed DCV. AutoSSL did not renew the certificate for …dot.com. You must take action to keep this site secure. The DNS query to cpanel-dcv-test-record…dot.com for the DCV challenge returned no TXT record that matches the value xyz…”.
Since this automatic renewal process happens every 3 months and having multiple domains, the situation is quickly getting to be quite an annoyance due to the process described bellow that has to be performed everytime a LetsEncrypt AutoSSL renewal is due and to be completed without further errors.
My webhosting support suggested that I temporarily pause the Cloudflare service on the domain that was reporting the error above, and that was usually a workable solution, although still not ideal. Then after 24h I would just restart the Cloudflare service and not get any further renewal errors until the next AutoSSL certificate renewal is attempted in 3 months.
Problem is that just pausing the Cloudflare service no longer seems to be enough, and I actually now need to even temporarily change the DNS servers of the domain back to their defaults for 24 hours to allow the renewal to complete and get rid of the error, then switch the domain DNS back to the Cloudflare DNS servers to continue to use their service.
Has anyone experienced this problem, and found a more workable or permanent solution? Thank you for any help.