Knowledge Base

Unable to issue Let’s Encrypt certificate for securing Plesk page if wildcard subdomain is present on the server

 
applications extensionsdomainshttpsletsencryptplesk 12 5

Symptoms

  • Unable to issue Let’s Encrypt certificate for securing Plesk page:

    PLESK_ERROR: Error: Could not issue a Let’s Encrypt SSL/TLS certificate for example.com. Authorization for the domain failed. Invalid response from https://acme-v01.api.letsencrypt.org/acme/authz/JwiJ1oPnjy-8ahXSzgbObDNjn9CrcIjzs87_H_7wEz8. Details:Type: urn:acme:error:unauthorized Status: 403. Detail: Invalid response from http://example.com/.well-known/acme-challenge/BjH29Kw9Ttp5bV1QV2kCFpAsGWEfONGUu4iY3bR_GqM:

  • Plesk server hostname is some-subdomain.example.com. In the same time there is domain example.com with wildcard subdomain *.example.com.

Cause

It is a bug in the Let’s Encrypt with ID EXTLETSENC-383 . The fix is planned to be included in one the next updates of the extension.

Resolution

The only workaround is to disable wildcard subdomain *.example.com for the time of issuing certificate for Plesk, however this will break panel certificate future renewal.

To disable wildcard subdomain:

  1. Login to Plesk as admin user.
  2. Go to Domains > *.example.com > Disable.

Screenshot_1.png

Read the full article
Related Posts
Knowledge Base

Industry
Partners

industry-partner_ALIBABA
industry-partner_GOOGLEPARTNER
industry-partner_MICROSOFT
industry-partner_REDHAT-r2
industry-partner_ALIBABA
industry-partner_AUTOMATTIC
industry-partner_AWS
industry-partner_DIGITALOCEAN
industry-partner_SCALEWAY

Follow us:

Facebook Twitter Linkedin Youtube Github

© 2021 Plesk International GmbH. All rights reserved. Plesk and the Plesk logo are trademarks of Plesk International GmbH.

Managed with 💙  with Plesk WordPress Toolkit

Search
Generic filters
Exact matches only
Search in title
Search in content
Search in excerpt