Acme issue with DNSMadeEasy



  • Trying to get a subdomain working with Acme and keep getting that the domain is not valid.

    Trying to have support.filopto.com use https with let's encrypt. When I try creating the certificate I get that the Domain is not valid. Do not know what I'm doing wrong. The domain does exist and working

    Any help would be appreciated.

    Here is part of the log file showing the error:

    [Tue Mar 10 11:43:52 ADT 2020] d_api='/usr/local/pkg/acme/dnsapi/dns_me.sh'
    [Tue Mar 10 11:43:52 ADT 2020] dns_entry='support.filopto.com,_acme-challenge.support.filopto.com,,dns_me,R2XXXXX,/usr/local/pkg/acme/dnsapi/dns_me.sh'
    [Tue Mar 10 11:43:52 ADT 2020] Found domain api file: /usr/local/pkg/acme/dnsapi/dns_me.sh
    [Tue Mar 10 11:43:52 ADT 2020] dns_me_add exists=0
    [Tue Mar 10 11:43:52 ADT 2020] Adding txt value: R2XXXXfor domain: _acme-challenge.support.filopto.com
    [Tue Mar 10 11:43:52 ADT 2020] APP
    [Tue Mar 10 11:43:52 ADT 2020] 5:ME_Key='XXXXXX'
    [Tue Mar 10 11:43:52 ADT 2020] APP
    [Tue Mar 10 11:43:52 ADT 2020] 6:ME_Secret='XXXXXX'
    [Tue Mar 10 11:43:52 ADT 2020] First detect the root zone
    [Tue Mar 10 11:43:52 ADT 2020] name?domainname=support.filopto.com
    [Tue Mar 10 11:43:52 ADT 2020] od exists=0
    [Tue Mar 10 11:43:52 ADT 2020] GET
    [Tue Mar 10 11:43:52 ADT 2020] url='https://api.dnsmadeeasy.com/V2.0/dns/managed/name?domainname=support.filopto.com'
    [Tue Mar 10 11:43:52 ADT 2020] timeout=
    [Tue Mar 10 11:43:52 ADT 2020] Http already initialized.
    [Tue Mar 10 11:43:52 ADT 2020] _CURL='curl -L --silent --dump-header /tmp/acme/filopto.com//http.header -g '
    [Tue Mar 10 11:43:53 ADT 2020] ret='0'
    [Tue Mar 10 11:43:53 ADT 2020] response='<html><head><title>Apache Tomcat/7.0.12 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} P {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;}A {color : black;}A.name {color : black;}HR {color : #525D76;}--></style> </head><body><h1>HTTP Status 404 - Not Found</h1><HR size="1" noshade="noshade"><p><b>type</b> Status report</p><p><b>message</b> <u>Not Found</u></p><p><b>description</b> <u>The requested resource (Not Found) is not available.</u></p><HR size="1" noshade="noshade"><h3>Apache Tomcat/7.0.12</h3></body></html>'
    [Tue Mar 10 11:43:53 ADT 2020] name?domainname=filopto.com
    [Tue Mar 10 11:43:53 ADT 2020] od exists=0
    [Tue Mar 10 11:43:53 ADT 2020] GET
    [Tue Mar 10 11:43:53 ADT 2020] url='https://api.dnsmadeeasy.com/V2.0/dns/managed/name?domainname=filopto.com'
    [Tue Mar 10 11:43:53 ADT 2020] timeout=
    [Tue Mar 10 11:43:53 ADT 2020] Http already initialized.
    [Tue Mar 10 11:43:53 ADT 2020] _CURL='curl -L --silent --dump-header /tmp/acme/filopto.com//http.header -g '
    [Tue Mar 10 11:43:53 ADT 2020] ret='0'
    [Tue Mar 10 11:43:53 ADT 2020] response='{"folderId":2329,"pendingActionId":0,"gtdEnabled":false,"vanityId":5577,"nameServers":[{"ipv6":"2600:1800:10::1","id":10,"fqdn":"ns10.dnsmadeeasy.com","groupId":2,"ipv4":"208.94.148.4"},{"ipv6":"2600:1801:11::1","id":11,"fqdn":"ns11.dnsmadeeasy.com","groupId":2,"ipv4":"208.80.124.4"},{"ipv6":"2600:1802:12::1","id":12,"fqdn":"ns12.dnsmadeeasy.com","groupId":2,"ipv4":"208.80.126.4"},{"ipv6":"2600:1801:13::1","id":13,"fqdn":"ns13.dnsmadeeasy.com","groupId":2,"ipv4":"208.80.125.4"},{"ipv6":"2600:1802:14::1","id":14,"fqdn":"ns14.dnsmadeeasy.com","groupId":2,"ipv4":"208.80.127.4"},{"ipv6":"2600:1800:15::1","id":15,"fqdn":"ns15.dnsmadeeasy.com","groupId":2,"ipv4":"208.94.149.4"}],"updated":1583850681789,"created":1336003200000,"processMulti":false,"activeThirdParties":[],"axfrServer":{"fqdn":"axfr2.dnsmadeeasy.com","groupId":2,"ipv4":"208.94.147.18"},"delegateNameServers":["ns10.dnsmadeeasy.com.","ns11.dnsmadeeasy.com.","ns12.dnsmadeeasy.com.","ns13.dnsmadeeasy.com.","ns14.dnsmadeeasy.com."],"transferAclId":2362,"vanityNameServers":[{"id":5577,"fqdn":"ns10.dnsmadeeasy.com"},{"id":5577,"fqdn":"ns11.dnsmadeeasy.com"},{"id":5577,"fqdn":"ns12.dnsmadeeasy.com"},{"id":5577,"fqdn":"ns13.dnsmadeeasy.com"},{"id":5577,"fqdn":"ns14.dnsmadeeasy.com"}],"name":"filopto.com","id":789227}'
    [Tue Mar 10 11:43:53 ADT 2020] invalid domain
    [Tue Mar 10 11:43:53 ADT 2020] Error add txt for domain:_acme-challenge.support.filopto.com
    [Tue Mar 10 11:43:53 ADT 2020] _on_issue_err
    [Tue Mar 10 11:43:53 ADT 2020] Please check log file for more details: /tmp/acme/filopto.com/acme_issuecert.log



  • Tried to use wild car and now I'm getting a different error "illegal byte count -- -2"

    filopto
    Renewing certificate
    account: filopto
    server: letsencrypt-production-2

    /usr/local/pkg/acme/acme.sh --issue -d 'filopto.com' --dns 'dns_me' -d '.filopto.com' --dns 'dns_me' --home '/tmp/acme/filopto/' --accountconf '/tmp/acme/filopto/accountconf.conf' --force --reloadCmd '/tmp/acme/filopto/reloadcmd.sh' --log-level 3 --log '/tmp/acme/filopto/acme_issuecert.log'
    Array
    (
    [path] => /etc:/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin/
    [PATH] => /etc:/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin/
    [ME_Key] => XXXXX
    [ME_Secret] => XXXXXXX
    [Tue Mar 10 14:06:42 ADT 2020] Multi domain='DNS:filopto.com,DNS:
    .filopto.com'
    [Tue Mar 10 14:06:42 ADT 2020] Getting domain auth token for each domain
    [Tue Mar 10 14:06:43 ADT 2020] Getting webroot for domain='filopto.com'
    [Tue Mar 10 14:06:43 ADT 2020] Getting webroot for domain='*.filopto.com'
    [Tue Mar 10 14:06:44 ADT 2020] Adding txt value: kcqby-j_ZBVFtYKIWtAgieJ-LG2fMqC4Ta26NmGDFas for domain: _acme-challenge.filopto.com
    head: illegal byte count -- -2
    [Tue Mar 10 14:06:44 ADT 2020] invalid domain
    [Tue Mar 10 14:06:44 ADT 2020] Error add txt for domain:_acme-challenge.filopto.com
    [Tue Mar 10 14:06:44 ADT 2020] Please check log file for more details: /tmp/acme/filopto/acme_issuecert.log



  • @cjbujold said in Acme issue with DNSMadeEasy:

    "illegal byte count -- -2"

    I get the same "illegal byte count -- -2" when I use just a single node machine.example.com

    I played with this until I hit the LE limits and then had to wait for the next hour and try again. I ended up doing DNS Manual and adding the record myself.

    In other programs that get certs, you have to select the domain and the machine in different fields so it looks up the correct domain and then adds the txt record using just the machine name since DNSMadeEsasy automatically appends the domain.


Log in to reply