无法使用 自动申请证书

1Panel
1

已正确配置ACME 和 DNS 账户,申请报错。用两台机器都安装了 1panel 申请证书都不行,手动验证可以
日志:

2024/01/08 16:12:50 开始申请证书,域名 [www.test.com,test.com] 申请方式 [DNS 自动] DNS 账号 [CF] 厂商 [CloudFlare]
2024/01/08 16:12:50 [INFO] [www.test.com, test.com] acme: Obtaining bundled SAN certificate
2024/01/08 16:12:54 [INFO] [www.test.com] AuthURL: https://dv.acme-v02.api.pki.goog/authz/8i5TNk81z3sunGhNo0sKXw
2024/01/08 16:12:54 [INFO] [test.com] AuthURL: https://dv.acme-v02.api.pki.goog/authz/fX3f2JQ_t01-c4Zcwfoxvg
2024/01/08 16:12:54 [INFO] [www.test.com] acme: Could not find solver for: tls-alpn-01
2024/01/08 16:12:54 [INFO] [www.test.com] acme: Could not find solver for: http-01
2024/01/08 16:12:54 [INFO] [www.test.com] acme: use dns-01 solver
2024/01/08 16:12:54 [INFO] [test.com] acme: Could not find solver for: tls-alpn-01
2024/01/08 16:12:54 [INFO] [test.com] acme: Could not find solver for: http-01
2024/01/08 16:12:54 [INFO] [test.com] acme: use dns-01 solver
2024/01/08 16:12:54 [INFO] [www.test.com] acme: Preparing to solve DNS-01
2024/01/08 16:12:54 [INFO] [test.com] acme: Preparing to solve DNS-01
2024/01/08 16:12:54 [INFO] [www.test.com] acme: Cleaning DNS-01 challenge
2024/01/08 16:12:54 [WARN] [www.test.com] acme: cleaning up failed: cloudflare: failed to find zone test.com.: ListZonesContext command failed: Invalid request headers (6003) 
2024/01/08 16:12:54 [INFO] [test.com] acme: Cleaning DNS-01 challenge
2024/01/08 16:12:54 [WARN] [test.com] acme: cleaning up failed: cloudflare: failed to find zone test.com.: ListZonesContext command failed: Invalid request headers (6003) 
2024/01/08 16:12:55 [INFO] Deactivating auth: https://dv.acme-v02.api.pki.goog/authz/8i5TNk81z3sunGhNo0sKXw
2024/01/08 16:12:57 [INFO] Deactivating auth: https://dv.acme-v02.api.pki.goog/authz/fX3f2JQ_t01-c4Zcwfoxvg
2024/01/08 16:12:58 申请  [www.test.com] 证书失败, error: one or more domains had a problem:
[www.test.com] [www.test.com] acme: error presenting token: cloudflare: failed to find zone test.com.: ListZonesContext command failed: Invalid request headers (6003)
[test.com] [test.com] acme: error presenting token: cloudflare: failed to find zone test.com.: ListZonesContext command failed: Invalid request headers (6003)
2
1 个赞
3

可以了,感谢

4

我有遇到类似的情况,但域名是在godaddy的,请教下这要怎么解决,下面是日志

2024/05/02 02:06:49 开始申请证书,域名 [test.com] 申请方式 [DNS 自动] DNS 账号 [acmeccount] 厂商 [Godaddy]
2024/05/02 02:06:49 [INFO] [[test.com](http://test.com)] acme: Obtaining bundled SAN certificate
2024/05/02 02:06:49 [INFO] [[test.com](http://test.com)] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/345447861317
2024/05/02 02:06:49 [INFO] [test.com] acme: Could not find solver for: tls-alpn-01
2024/05/02 02:06:49 [INFO] [test.com] acme: Could not find solver for: http-01
2024/05/02 02:06:49 [INFO] [test.com] acme: use dns-01 solver
2024/05/02 02:06:49 [INFO] [test.com] acme: Preparing to solve DNS-01
2024/05/02 02:06:50 [INFO] [test.com] acme: Cleaning DNS-01 challenge
2024/05/02 02:06:50 [WARN] [test.com] acme: cleaning up failed: godaddy: failed to get TXT records: unexpected status code: [status code: 403] body: {"code":"ACCESS_DENIED","message":"Authenticated user is not allowed access"} 
2024/05/02 02:06:50 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/345447861317
2024/05/02 02:06:50 申请  [test.com] 证书失败, error: one or more domains had a problem:
[test.com] [test.com] acme: error presenting token: godaddy: failed to get TXT records: unexpected status code: [status code: 403] body: {"code":"ACCESS_DENIED","message":"Authenticated user is not allowed access"}

1panel版本是1.10.1-lts

5

经查阅godaddyGoDaddy 文档,发现要用acme的话不仅要有acme账号比,加acme账号的时候还要带上 -eab-kid-eab-hmac-key这两个参数,但系统里没看到有。有没有大佬知道怎么解的

6

这两个参数就是 DNS 账号中填写的

image
image768×253 3.11 KB

7

感谢大佬回复,我确认下,是不是“ -eab-kid对应API Key”,然后“ -eab-hmac-key对应API Secret

8

访问 https://developer.godaddy.com/
打开

image
image2410×1416 146 KB

创建 Production 的 APi key
然后有个 Key 和 Secret

1 个赞