SSL Cert generation

I am getting the following error at my hosting dashboard when i try to generate a new SSL certificate.
It related to Cloudflare.
Can someone tell me what this is and how to fix it? I do have an SSL but when i tried to get a wildcard SSL for my website i get the following error.

v02.api.letsencrypt.org/acme/authz-v3/13027508772 :: urn:ietf:params:acme:error:badNonce :: JWS has an invalid anti-replay nonce: “00045E6lHjRHAQPKWKhOHlBEX0OAJ2M-gR9QNVkXg6Cz9Tw”, url:
2021/05/11 19:02:13 [INFO] Skipping deactivating of valid auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/13027508772
2021/05/11 19:02:13 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/13029686560
2021/05/11 19:02:14 Could not obtain certificates:
error: one or more domains had a problem:
[*.gioveinc.com] time limit exceeded: last error: NS camilo.ns.cloudflare.com. returned NXDOMAIN for _acme-challenge.gioveinc.com.
Certificate generation failed.

I’d hazard a guess that your hosting dashboard is using DNS-01 to issue certs, but does not have an API tie-in to your Cloudflare account to create that DNS record.

Have you asked your host if they support this API call to Cloudflare?

As a workaround, you can try generating a certificate at Cloudflare and manually entering it in your hosting dashboard for :orange: proxied hostnames.

1 Like

This topic was automatically closed after 29 days. New replies are no longer allowed.