Unable to Create Wildcard Let's Encrypt using ACME DNS01 Challenge provider in Kubernetes











up vote
-1
down vote

favorite












I am trying to create wildcard let's encrypt SSL certificate in Kubernetes. I tried the the ACME-DNS DNS01 challenge and it not creating the SSL certificates.



Error preparing issuer for certificate default/wildcard-test-tk: ACME server does not allow selected challenge type or no provider is configured for domain "domtest.tk"



I have referred this link and used this acme-dns for creating credentials to verify the domain authority.






dns kubernetes lets-encrypt certbot







share|improve this question






















  • Can you share Kubernetes object configs for Certificate and ClusterIssuer?
    – mk_sta
    Nov 7 at 11:35










  • This is the Issuer condig apiVersion: certmanager.k8s.io/v1alpha1 kind: Issuer metadata: name: letsencrypt-testdom-prod namespace: default spec: acme: email: myemail@mydomain.com server: "https://acme-staging-v02.api.letsencrypt.org/directory" privateKeySecretRef: name: letsencrypt-test-prod dns01: providers: - name: dns-wildcard acmedns: host: https://auth.acme-dns.io accountSecretRef: name: acme-test-dns key: acmedns.json
    – Basheer.O
    Nov 7 at 12:07












  • And this is the Certificate config apiVersion: certmanager.k8s.io/v1alpha1 kind: Certificate metadata: name: wildcard-test-tk namespace: default spec: secretName: wildcard-test-tk-tls issuerRef: name: letsencrypt-testdom-prod kind: Issuer dnsNames: - '*.testdom.tk' acme: config: - dns01: provider: dns-wildcard domains: - '*.testdom.tk'
    – Basheer.O
    Nov 7 at 12:09












  • The issue corresponds to the different domain domtest.tk against testdom.tk that you've declared. Have you tried to add domtest.tk domain to your configuration?
    – mk_sta
    Nov 9 at 12:09










  • It is the typo when replacing the real domain.
    – Basheer.O
    Nov 9 at 13:07

















up vote
-1
down vote

favorite












I am trying to create wildcard let's encrypt SSL certificate in Kubernetes. I tried the the ACME-DNS DNS01 challenge and it not creating the SSL certificates.



Error preparing issuer for certificate default/wildcard-test-tk: ACME server does not allow selected challenge type or no provider is configured for domain "domtest.tk"



I have referred this link and used this acme-dns for creating credentials to verify the domain authority.






dns kubernetes lets-encrypt certbot







share|improve this question






















  • Can you share Kubernetes object configs for Certificate and ClusterIssuer?
    – mk_sta
    Nov 7 at 11:35










  • This is the Issuer condig apiVersion: certmanager.k8s.io/v1alpha1 kind: Issuer metadata: name: letsencrypt-testdom-prod namespace: default spec: acme: email: myemail@mydomain.com server: "https://acme-staging-v02.api.letsencrypt.org/directory" privateKeySecretRef: name: letsencrypt-test-prod dns01: providers: - name: dns-wildcard acmedns: host: https://auth.acme-dns.io accountSecretRef: name: acme-test-dns key: acmedns.json
    – Basheer.O
    Nov 7 at 12:07












  • And this is the Certificate config apiVersion: certmanager.k8s.io/v1alpha1 kind: Certificate metadata: name: wildcard-test-tk namespace: default spec: secretName: wildcard-test-tk-tls issuerRef: name: letsencrypt-testdom-prod kind: Issuer dnsNames: - '*.testdom.tk' acme: config: - dns01: provider: dns-wildcard domains: - '*.testdom.tk'
    – Basheer.O
    Nov 7 at 12:09












  • The issue corresponds to the different domain domtest.tk against testdom.tk that you've declared. Have you tried to add domtest.tk domain to your configuration?
    – mk_sta
    Nov 9 at 12:09










  • It is the typo when replacing the real domain.
    – Basheer.O
    Nov 9 at 13:07















up vote
-1
down vote

favorite









up vote
-1
down vote

favorite











I am trying to create wildcard let's encrypt SSL certificate in Kubernetes. I tried the the ACME-DNS DNS01 challenge and it not creating the SSL certificates.



Error preparing issuer for certificate default/wildcard-test-tk: ACME server does not allow selected challenge type or no provider is configured for domain "domtest.tk"



I have referred this link and used this acme-dns for creating credentials to verify the domain authority.






dns kubernetes lets-encrypt certbot







share|improve this question













I am trying to create wildcard let's encrypt SSL certificate in Kubernetes. I tried the the ACME-DNS DNS01 challenge and it not creating the SSL certificates.



Error preparing issuer for certificate default/wildcard-test-tk: ACME server does not allow selected challenge type or no provider is configured for domain "domtest.tk"



I have referred this link and used this acme-dns for creating credentials to verify the domain authority.






dns kubernetes lets-encrypt certbot




dns kubernetes lets-encrypt certbot






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Nov 7 at 7:40









Basheer.O

16717




16717












  • Can you share Kubernetes object configs for Certificate and ClusterIssuer?
    – mk_sta
    Nov 7 at 11:35










  • This is the Issuer condig apiVersion: certmanager.k8s.io/v1alpha1 kind: Issuer metadata: name: letsencrypt-testdom-prod namespace: default spec: acme: email: myemail@mydomain.com server: "https://acme-staging-v02.api.letsencrypt.org/directory" privateKeySecretRef: name: letsencrypt-test-prod dns01: providers: - name: dns-wildcard acmedns: host: https://auth.acme-dns.io accountSecretRef: name: acme-test-dns key: acmedns.json
    – Basheer.O
    Nov 7 at 12:07












  • And this is the Certificate config apiVersion: certmanager.k8s.io/v1alpha1 kind: Certificate metadata: name: wildcard-test-tk namespace: default spec: secretName: wildcard-test-tk-tls issuerRef: name: letsencrypt-testdom-prod kind: Issuer dnsNames: - '*.testdom.tk' acme: config: - dns01: provider: dns-wildcard domains: - '*.testdom.tk'
    – Basheer.O
    Nov 7 at 12:09












  • The issue corresponds to the different domain domtest.tk against testdom.tk that you've declared. Have you tried to add domtest.tk domain to your configuration?
    – mk_sta
    Nov 9 at 12:09










  • It is the typo when replacing the real domain.
    – Basheer.O
    Nov 9 at 13:07




















  • Can you share Kubernetes object configs for Certificate and ClusterIssuer?
    – mk_sta
    Nov 7 at 11:35










  • This is the Issuer condig apiVersion: certmanager.k8s.io/v1alpha1 kind: Issuer metadata: name: letsencrypt-testdom-prod namespace: default spec: acme: email: myemail@mydomain.com server: "https://acme-staging-v02.api.letsencrypt.org/directory" privateKeySecretRef: name: letsencrypt-test-prod dns01: providers: - name: dns-wildcard acmedns: host: https://auth.acme-dns.io accountSecretRef: name: acme-test-dns key: acmedns.json
    – Basheer.O
    Nov 7 at 12:07












  • And this is the Certificate config apiVersion: certmanager.k8s.io/v1alpha1 kind: Certificate metadata: name: wildcard-test-tk namespace: default spec: secretName: wildcard-test-tk-tls issuerRef: name: letsencrypt-testdom-prod kind: Issuer dnsNames: - '*.testdom.tk' acme: config: - dns01: provider: dns-wildcard domains: - '*.testdom.tk'
    – Basheer.O
    Nov 7 at 12:09












  • The issue corresponds to the different domain domtest.tk against testdom.tk that you've declared. Have you tried to add domtest.tk domain to your configuration?
    – mk_sta
    Nov 9 at 12:09










  • It is the typo when replacing the real domain.
    – Basheer.O
    Nov 9 at 13:07


















Can you share Kubernetes object configs for Certificate and ClusterIssuer?
– mk_sta
Nov 7 at 11:35




Can you share Kubernetes object configs for Certificate and ClusterIssuer?
– mk_sta
Nov 7 at 11:35












This is the Issuer condig apiVersion: certmanager.k8s.io/v1alpha1 kind: Issuer metadata: name: letsencrypt-testdom-prod namespace: default spec: acme: email: myemail@mydomain.com server: "https://acme-staging-v02.api.letsencrypt.org/directory" privateKeySecretRef: name: letsencrypt-test-prod dns01: providers: - name: dns-wildcard acmedns: host: https://auth.acme-dns.io accountSecretRef: name: acme-test-dns key: acmedns.json
– Basheer.O
Nov 7 at 12:07






This is the Issuer condig apiVersion: certmanager.k8s.io/v1alpha1 kind: Issuer metadata: name: letsencrypt-testdom-prod namespace: default spec: acme: email: myemail@mydomain.com server: "https://acme-staging-v02.api.letsencrypt.org/directory" privateKeySecretRef: name: letsencrypt-test-prod dns01: providers: - name: dns-wildcard acmedns: host: https://auth.acme-dns.io accountSecretRef: name: acme-test-dns key: acmedns.json
– Basheer.O
Nov 7 at 12:07














And this is the Certificate config apiVersion: certmanager.k8s.io/v1alpha1 kind: Certificate metadata: name: wildcard-test-tk namespace: default spec: secretName: wildcard-test-tk-tls issuerRef: name: letsencrypt-testdom-prod kind: Issuer dnsNames: - '*.testdom.tk' acme: config: - dns01: provider: dns-wildcard domains: - '*.testdom.tk'
– Basheer.O
Nov 7 at 12:09






And this is the Certificate config apiVersion: certmanager.k8s.io/v1alpha1 kind: Certificate metadata: name: wildcard-test-tk namespace: default spec: secretName: wildcard-test-tk-tls issuerRef: name: letsencrypt-testdom-prod kind: Issuer dnsNames: - '*.testdom.tk' acme: config: - dns01: provider: dns-wildcard domains: - '*.testdom.tk'
– Basheer.O
Nov 7 at 12:09














The issue corresponds to the different domain domtest.tk against testdom.tk that you've declared. Have you tried to add domtest.tk domain to your configuration?
– mk_sta
Nov 9 at 12:09




The issue corresponds to the different domain domtest.tk against testdom.tk that you've declared. Have you tried to add domtest.tk domain to your configuration?
– mk_sta
Nov 9 at 12:09












It is the typo when replacing the real domain.
– Basheer.O
Nov 9 at 13:07






It is the typo when replacing the real domain.
– Basheer.O
Nov 9 at 13:07



















active

oldest

votes











Your Answer






StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














 

draft saved


draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53185240%2funable-to-create-wildcard-lets-encrypt-using-acme-dns01-challenge-provider-in-k%23new-answer', 'question_page');
}
);

Post as a guest























active

oldest

votes













active

oldest

votes









active

oldest

votes






active

oldest

votes
















 

draft saved


draft discarded



















































 


draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53185240%2funable-to-create-wildcard-lets-encrypt-using-acme-dns01-challenge-provider-in-k%23new-answer', 'question_page');
}
);

Post as a guest






































































-

這個網誌中的熱門文章

Academy of Television Arts & Sciences

圖片
American television organization Academy of Television Arts & Sciences Founded 1946 ; 73 years ago  ( 1946 ) Location North Hollywood, California, United States Area served Television industry Product Emmy Awards Key people Frank Scherma ( Chairman and CEO ) Website televisionacademy.com [redirects to emmys.com , official website of the Emmys and the Television Academy The Academy of Television Arts & Sciences ( ATAS ), also colloquially known as the Television Academy , is a professional honorary organization dedicated to the advancement of the television industry in the United States. Founded in 1946, the organization presents the Primetime Emmy Awards, an annual ceremony honoring achievement in U.S. primetime television. Contents 1 History 2 Emmy Award 3 Publications and programs 4 Current governance 4.1 Board of Governors 5 Television Academy honors 5.1 1st Annual (2008) 5.2 2nd Annual (2009)...
閱讀完整內容

L'Équipe

圖片
For other uses, see Équipe (disambiguation). L'Équipe The front page of L'Équipe on 4 July 2011 Type Daily newspaper Format Tabloid Owner(s) Éditions Philippe Amaury Editor François Morinière Editor-in-chief Fabrice Jouhaud Founded 1946 Language French Headquarters Boulogne-Billancourt ISSN 0153-1069 Website www.lequipe.fr L'Équipe ( pronounced  [lekip] , French for "the team") is a French nationwide daily newspaper devoted to sport, owned by Éditions Philippe Amaury. The paper is noted for coverage of association football , rugby, motorsport and cycling. Its predecessor was L'Auto , a general sports paper whose name reflected not any narrow interest but the excitement of the time in car racing. L'Auto originated the Tour de France cycling stage race in 1903 as a circulation booster. The race leader's yellow jersey (French: maillot jaune ) was instituted in 1919, probably to reflect the dist...
閱讀完整內容

FTSE 250 Index

圖片
FTSE 250 Index Foundation 1984 Operator FTSE Group Exchanges London Stock Exchange Constituents 250 (consisting of 101 to 350) Type Mid cap Market cap £394.6 billion ( as at 31 July 2017 ) [1] Weighting method Capitalisation-weighted index Related indices FTSE 100 Index FTSE 350 Index Website FTSE UK Index Series The FTSE 250 Index ( / ˈ f ʊ t s iː / FUUT -see ) is a capitalisation-weighted index consisting of the 101st to the 350th largest companies listed on the London Stock Exchange. Promotions and demotions to and from the index occur quarterly in March, June, September, and December. The Index is calculated in real-time and published every minute. Related indices are the FTSE 100 Index (which lists the largest 100 companies), the FTSE 350 Index (which combines the FTSE 100 and 250), the FTSE SmallCap Index and the FTSE All-Share Index (an aggregation of the FTSE 100 Index, the FTSE 250 Index and the FTSE SmallCap Index). A larg...
閱讀完整內容