I am getting a time error when trying to renew my certificate using the dnsmadeeasy API:
2020-07-06 12:51:25.958 -07:00 [INF] Created ACME Order:
2020-07-06 12:51:26.061 -07:00 [INF] Fetching Authorizations.
2020-07-06 12:51:26.561 -07:00 [INF] Got http-01 challenge
2020-07-06 12:51:26.780 -07:00 [INF] Got dns-01 challenge
2020-07-06 12:51:26.781 -07:00 [INF] Attempting Domain Validation:
2020-07-06 12:51:26.781 -07:00 [INF] Registering and Validating
2020-07-06 12:51:26.782 -07:00 [INF] Performing automated challenge responses ()
2020-07-06 12:51:26.789 -07:00 [INF] DNS: Creating TXT Record ââ with value ââ, in Zone Id â4472704â using API provider âDnsMadeEasy DNS APIâ
2020-07-06 12:51:27.211 -07:00 [ERR] DNS update failed: DnsMadeEasy DNS API :: [DnsMadeEasy DNS API] Failed to create record: DnsMadeEasy: Failed to query DNS Zones. :: {âerrorâ: [âRequest sent with date header too far out of sync. Difference in times is -34603, header value is 1594065086000â]}
2020-07-06 12:51:27.212 -07:00 [INF] Requesting Validation:
2020-07-06 12:53:27.732 -07:00 [INF] Attempting Challenge Response Validation for Domain:
2020-07-06 12:53:27.732 -07:00 [INF] Registering and Validating
2020-07-06 12:53:27.732 -07:00 [INF] Checking automated challenge response for Domain:
2020-07-06 12:53:28.037 -07:00 [WRN] Challenge response validation still pending. Re-checking [10]âŚ
2020-07-06 12:53:29.653 -07:00 [INF] DNS problem: NXDOMAIN looking up TXT for _acme- - check that a DNS record exists for this domain
2020-07-06 12:53:39.021 -07:00 [INF] DNS: Deleting TXT Record ââ, in Zone Id â4472704â using API provider âDnsMadeEasy DNS APIâ
2020-07-06 12:53:39.869 -07:00 [INF] Validation of the required challenges did not complete successfully. DNS problem: NXDOMAIN looking up TXT for - check that a DNS record exists for this domain
2020-07-06 12:53:39.869 -07:00 [INF] Validation of the required challenges did not complete successfully. DNS problem: NXDOMAIN looking up TXT for - check that a DNS record exists for this domain
I opened a ticket with DNS Made Easy support and this is what they told me:
Just to clarify, we use NTT for time and you would need to use Unix epoch time. Our API allows for up to 30 seconds of difference in time but if the timestamp in the header is off by more than 30 seconds then you will get this error. Please let us know if you have further questions, weâre happy to help!
Based on what I am reading in the logs the time is off by almost 10 hours. Do we have a timezone issue?