#5320 Let's Encrypt DNS authentication failing.
Webmin: 1.932
Virtualmin: 6.08
OS: CentOS 6.10
When I try to create a let's encrypt certificate through the DNS process it fails with a similar message to...
Undefined subroutine &main::restart_zone called at /usr/libexec/webmin/webmin/letsencrypt-dns.pl line 47.
webmail.tvis.ca challenge did not pass: Incorrect TXT record "sebg98H9bmTjZINADyY7iUNQyE1OEIo8liuuPEC5H3o" found at _acme-challenge.webmail.tvis.ca
In troubleshooting the problem, I can see that the correct text is written to the correct zone file but then for whatever reason the zone is not restarted correctly.
Restarting the zone manually shows the correct value in the zone but then it is too late for let's encrypt.
It was working before but it appears to have stopped working sometime in the last couple of months.
This is a bug in the current webmin devel release, which will be fixed in the next version. Until then, you can apply this patch : https://github.com/webmin/webmin/commit/771be1a754fafa02abb5d5670f3ba4a6e94f30c4
Thanks!
Not sure how I got to be on a devel release. What should virtualmin.repo contain so that I am on a stable release?
This is what virtualmin.repo on my server currently is...
[virtualmin]
name=RHEL/CentOS/Scientific $releasever - $basearch - Virtualmin
baseurl=http://SERIALNUMBER:LICENSEKEY@software.virtualmin.com/gpl/rhel/$releasever/$basearch/
enabled=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-virtualmin
gpgcheck=1
[virtualmin-universal]
name=Virtualmin Distribution Neutral Packages
baseurl=http://SERIALNUMBER:LICENSEKEY@software.virtualmin.com/gpl/universal/
enabled=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-virtualmin
gpgcheck=1
Tony