You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
acme.sh --issue --dns dns_netcup -d gitlab.excample.de
[Mi 25. Jun 21:12:19 CEST 2025] Using CA: https://acme.zerossl.com/v2/DV90
[Mi 25. Jun 21:12:19 CEST 2025] Creating domain key
[Mi 25. Jun 21:12:19 CEST 2025] The domain key is here: /root/.acme.sh/gitlab.excample.de_ecc/gitlab.excample.de.key
[Mi 25. Jun 21:12:19 CEST 2025] Single domain='gitlab.excample.de'
[Mi 25. Jun 21:12:22 CEST 2025] Getting webroot for domain='gitlab.excample.de'
[Mi 25. Jun 21:12:22 CEST 2025] Adding TXT value: ********* for domain: _acme-challenge.gitlab.excample.de
[Mi 25. Jun 21:12:23 CEST 2025] The TXT record has been successfully added.
[Mi 25. Jun 21:12:23 CEST 2025] Let's check each DNS record now. Sleeping for 20 seconds first.
[Mi 25. Jun 21:12:44 CEST 2025] You can use '--dnssleep' to disable public dns checks.
[Mi 25. Jun 21:12:44 CEST 2025] See: https://github.com/acmesh-official/acme.sh/wiki/dnscheck
[Mi 25. Jun 21:12:44 CEST 2025] Checking gitlab.excample.de for _acme-challenge.gitlab.excample.de
[Mi 25. Jun 21:12:44 CEST 2025] Not valid yet, let's wait for 10 seconds then check the next one.
[Mi 25. Jun 21:12:56 CEST 2025] Let's wait for 10 seconds and check again.
[Mi 25. Jun 21:13:07 CEST 2025] You can use '--dnssleep' to disable public dns checks.
[Mi 25. Jun 21:13:07 CEST 2025] See: https://github.com/acmesh-official/acme.sh/wiki/dnscheck
[Mi 25. Jun 21:13:07 CEST 2025] Checking gitlab.excample.de for _acme-challenge.gitlab.excample.de
[Mi 25. Jun 21:13:07 CEST 2025] Not valid yet, let's wait for 10 seconds then check the next one.
OK, why is the DNS check not working? My DNS server give me the correct answer and I can open the website in my local network with HTTP.
The next, the hint You can use '--dnssleep' to disable public dns checks. is not so helpful, better is, when it is writte You can use '--dnssleep 0' to disable public dns checks.
Now I have disabled the DNS checks:
acme.sh --issue --dnssleep 0 --dns dns_netcup -d gitlab.excample.de
[Mi 25. Jun 21:15:27 CEST 2025] Using CA: https://acme.zerossl.com/v2/DV90
[Mi 25. Jun 21:15:27 CEST 2025] Single domain='gitlab.excample.de'
[Mi 25. Jun 21:16:16 CEST 2025] Getting webroot for domain='gitlab.excample.de'
[Mi 25. Jun 21:16:16 CEST 2025] Adding TXT value: ************** for domain: _acme-challenge.gitlab.excample.de
[Mi 25. Jun 21:16:17 CEST 2025] The TXT record has been successfully added.
[Mi 25. Jun 21:16:17 CEST 2025] Sleeping for 0 seconds to wait for the the TXT records to take effect
[Mi 25. Jun 21:16:18 CEST 2025] Verifying: gitlab.excample.de
[Mi 25. Jun 21:16:19 CEST 2025] Processing. The CA is processing your order, please wait. (1/30)
[Mi 25. Jun 21:17:09 CEST 2025] The retryafter=86400 value is too large (> 600), will not retry anymore.
[Mi 25. Jun 21:17:09 CEST 2025] Removing DNS records.
[Mi 25. Jun 21:17:09 CEST 2025] Removing txt: *************** for domain: _acme-challenge.gitlab.excample.de
[Mi 25. Jun 21:17:10 CEST 2025] Successfully removed
[Mi 25. Jun 21:17:10 CEST 2025] Please add '--debug' or '--log' to see more information.
[Mi 25. Jun 21:17:10 CEST 2025] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
No I search on the web and found some hints, that is a old problem and its solved in the newest version. OK, I have a new installation with the newest version.
I have a public domain excample.de with a letsencrypt certification to www.excample.de and excample.de.
Now I will change my private web sites from HTTP to HTTPS (at the moment I have 3 running webserver and I have my own domain name me.local at the moment. So I will change this domain name only for the webserver to excample.de.
After running of this script the certification files in the directory gitlab.excample.de_ecc are available.
Have every one a idee, what is the mismatch by me?
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Uh oh!
There was an error while loading. Please reload this page.
-
Sorry,
I'm new for using the acme.sh script and have so some problems with my first using.
Hier it what I have do at the moment (all as root):
`
apt-get install socat
curl https://get.acme.sh | sh -s email=my@excample.de
acme.sh --upgrade
[Mi 25. Jun 20:40:50 CEST 2025] Already up to date!
[Mi 25. Jun 20:40:50 CEST 2025] Upgrade successful!
acme.sh --version
https://github.com/acmesh-official/acme.sh
v3.1.2
export NC_Apikey="----"
export NC_Apipw="----"
export NC_CID="----"
acme.sh --issue --dns dns_netcup -d gitlab.excample.de
`
The first output is:
OK, why is the DNS check not working? My DNS server give me the correct answer and I can open the website in my local network with HTTP.
The next, the hint You can use '--dnssleep' to disable public dns checks. is not so helpful, better is, when it is writte You can use '--dnssleep 0' to disable public dns checks.
Now I have disabled the DNS checks:
No I search on the web and found some hints, that is a old problem and its solved in the newest version. OK, I have a new installation with the newest version.
Here the log file from the call:
acme.sh --issue --dnssleep 0 --dns dns_netcup -d gitlab.excample.de --logacme.sh.log
I have a public domain excample.de with a letsencrypt certification to www.excample.de and excample.de.
Now I will change my private web sites from HTTP to HTTPS (at the moment I have 3 running webserver and I have my own domain name me.local at the moment. So I will change this domain name only for the webserver to excample.de.
After running of this script the certification files in the directory gitlab.excample.de_ecc are available.
Have every one a idee, what is the mismatch by me?
Thanks for our help
Beta Was this translation helpful? Give feedback.
All reactions