Hello everyone,
I am kinda new to the whole TrueNAS thing so bear with me, I might be missing something really simple.
I am trying to get an SSL certificate to use on traefik. I followed every guide I could possibly find and all of them recommended Cloudflare so I went ahead and created an account. Everything works fine with the setup until the time comes to actually create the certificate. I press the button, wait a bit and a big fat error pops up saying that the TXT record found was incorrect.
Reading throw the error I figured that the record was actually missing completely. I could only think of 2 possible problems:
Thank you in advance.
Below you can find the whole error:
I am kinda new to the whole TrueNAS thing so bear with me, I might be missing something really simple.
I am trying to get an SSL certificate to use on traefik. I followed every guide I could possibly find and all of them recommended Cloudflare so I went ahead and created an account. Everything works fine with the setup until the time comes to actually create the certificate. I press the button, wait a bit and a big fat error pops up saying that the TXT record found was incorrect.
Reading throw the error I figured that the record was actually missing completely. I could only think of 2 possible problems:
- The port forwarding on the router
- The DNS records for the domain
Thank you in advance.
Below you can find the whole error:
Code:
Error: Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/middlewared/plugins/acme_protocol_/issue_cert.py", line 101, in issue_certificate
return acme_client.poll_and_finalize(
File "/usr/lib/python3/dist-packages/acme/client.py", line 710, in poll_and_finalize
orderr = self.poll_authorizations(orderr, deadline)
File "/usr/lib/python3/dist-packages/acme/client.py", line 734, in poll_authorizations
raise errors.ValidationError(failed)
acme.errors.ValidationError
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/middlewared/job.py", line 426, in run
await self.future
File "/usr/lib/python3/dist-packages/middlewared/job.py", line 461, in __run_body
rv = await self.method(*([self] + args))
File "/usr/lib/python3/dist-packages/middlewared/schema.py", line 1152, in nf
res = await f(*args, **kwargs)
File "/usr/lib/python3/dist-packages/middlewared/schema.py", line 1284, in nf
return await func(*args, **kwargs)
File "/usr/lib/python3/dist-packages/middlewared/plugins/crypto_/certificates.py", line 318, in do_create
await self.middleware.call(f'certificate.{self.map_functions[create_type]}', job, data)
File "/usr/lib/python3/dist-packages/middlewared/main.py", line 1306, in call
return await self._call(
File "/usr/lib/python3/dist-packages/middlewared/main.py", line 1266, in _call
return await self.run_in_executor(prepared_call.executor, methodobj, *prepared_call.args)
File "/usr/lib/python3/dist-packages/middlewared/main.py", line 1169, in run_in_executor
return await loop.run_in_executor(pool, functools.partial(method, *args, **kwargs))
File "/usr/lib/python3.9/concurrent/futures/thread.py", line 52, in run
result = self.fn(*self.args, **self.kwargs)
File "/usr/lib/python3/dist-packages/middlewared/schema.py", line 1288, in nf
return func(*args, **kwargs)
File "/usr/lib/python3/dist-packages/middlewared/plugins/crypto_/certificates.py", line 368, in create_acme_certificate
final_order = self.middleware.call_sync('acme.issue_certificate', job, 25, data, csr_data)
File "/usr/lib/python3/dist-packages/middlewared/main.py", line 1336, in call_sync
return methodobj(*prepared_call.args)
File "/usr/lib/python3/dist-packages/middlewared/plugins/acme_protocol_/issue_cert.py", line 117, in issue_certificate
raise CallError(f'Certificate request for final order failed: {msg}')
middlewared.service_exception.CallError: [EFAULT] Certificate request for final order failed:
Authorization for identifier Identifier(typ=IdentifierType(dns), value='nikcloudpi.duckdns.org') failed.
Here are the challenges that were not fulfilled:
Challenge Type: dns-01
Error information:
- Type: urn:ietf:params:acme:error:unauthorized
- Details: Incorrect TXT record "" found at _acme-challenge.nikcloudpi.duckdns.org
Authorization for identifier Identifier(typ=IdentifierType(dns), value='nikcloudpi.duckdns.org') failed.
Here are the challenges that were not fulfilled:
Challenge Type: dns-01
Error information:
- Type: urn:ietf:params:acme:error:unauthorized
- Details: Incorrect TXT record "" found at _acme-challenge.nikcloudpi.duckdns.org
