To generate SSL Certificate for observation k8 cluster, i’m executing following command
sudo certbot certonly --agree-tos --manual --preferred-challenges=dns -d *.testbox.mosip.net
It’s giving following ERROR:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Requesting a certificate for *.testbox.mosip.net
Please deploy a DNS TXT record under the name:
_acme-challenge.testbox.mosip.net.
with the following value:
DheMgtbzUwKJicnpOHhwdePfV-tYgB_yRR6m6YGLglo
Before continuing, verify the TXT record has been deployed. Depending on the DNS
provider, this may take some time, from a few seconds to multiple minutes. You can
check if it has finished deploying with aid of online tools, such as the Google
Look for one or more bolded line(s) below the line ‘;ANSWER’. It should show the
value(s) you’ve just added.
Press Enter to Continue
Certbot failed to authenticate some domains (authenticator: manual). The Certificate Authority reported these problems:
Domain: testbox.mosip.net
Type: dns
Detail: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.testbox.mosip.net - check that a DNS record exists for this domain
Hint: The Certificate Authority failed to verify the manually created DNS TXT records. Ensure that you created these in the correct location, or try waiting longer for DNS propagation on the next attempt.
Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
Before executing the above command, i executed below one
sudo certbot certonly --agree-tos --manual --preferred-challenges=dns -d *.mosip.net
And textbox.mosip.net
is part of *.mosip.net
So, I think that is creating the issue, How can I delete TXT record for *.mosip.net
?