ERROR Impediment: TOTAL_DCV_FAILURE: Every domain failed DCV.

HostCenter IL

Active Member
PartnerNOC
Nov 22, 2011
31
0
56
cPanel Access Level
Root Administrator
after update cloudlinux cant use autossl,
this is the error i gets:

the domain domain.com point to the server right.

ticket id in support cpanel: #94268881

Code:
Log for the AutoSSL run for “karolhairco”: Tuesday, February 23, 2021 11:17:11 AM GMT+0200 (cPanel (powered by Sectigo))
11:17:11 AM AutoSSL’s configured provider is “cPanel (powered by Sectigo)”.
This AutoSSL provider does not poll for certificate availability immediately after a certificate request submission. Instead, it submits certificate requests then periodically polls the cPanel Store for each requested certificate and installs it after a successful retrieval. The system will record all requests, retrievals, and installations for the current AutoSSL run in this log.
Analyzing “domain”’s domains …
11:17:11 AM Analyzing “domain.com” (website) …
11:17:11 AM ERROR TLS Status: Defective
Certificate expiry: 2/14/22, 3:05 PM UTC (356.24 days from now)
ERROR Defect: OPENSSL_VERIFY: The certificate chain failed OpenSSL’s verification (0:18:DEPTH_ZERO_SELF_SIGNED_CERT).
11:17:11 AM Analyzing “domain.com” (website) …
11:17:11 AM ERROR TLS Status: Defective
ERROR Defect: NO_SSL: No SSL certificate is installed.
11:17:11 AM Attempting to ensure the existence of necessary CAA records …
11:17:11 AM No CAA records were created.
11:17:11 AM Verifying 8 domains’ management status …
Verifying “cPanel (powered by Sectigo)”’s authorization on 8 domains via DNS CAA records …
11:17:12 AM “domain.com” is managed.
“cPanel (powered by Sectigo)” is authorized to issue certificates for 8 of this user’s 8 domains.
11:17:12 AM Performing HTTP DCV (Domain Control Validation) on 8 domains …
11:17:12 AM WARN Local HTTP DCV error (domain.com): The system queried for a temporary file at “http://domain.com/.well-known/pki-validation/F548A75C05182932144B12084491F900.txt”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
Redirection #1 (domain.co.il): http://domain.co.il/.well-known/pki-validation/88D545DAB3C6B03F2F1FA465880B31A4.txt → https://www.domain.co.il/.well-known/pki-validation/88D545DAB3C6B03F2F1FA465880B31A4.txt
ERROR “cPanel (powered by Sectigo)” forbids DCV HTTP redirections.
WARN Local HTTP DCV error (domain.co.il): The system queried for a temporary file at “https://www.domain.co.il/.well-known/pki-validation/88D545DAB3C6B03F2F1FA465880B31A4.txt”, which was redirected from “http://domain.co.il/.well-known/pki-validation/88D545DAB3C6B03F2F1FA465880B31A4.txt”. The web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist. The domain “domain.co.il” resolved to an IP address “109.207.77.246” that does not exist on this server.
WARN Local HTTP DCV error (www.karolhair.com): The system queried for a temporary file at “http://www.domain.com/.well-known/pki-validation/79854546EAC1FBB020843EF66DE6DE18.txt”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
WARN Local HTTP DCV error (mail.domain.com): The system queried for a temporary file at “http://mail.domain.com/.well-known/pki-validation/4519B411EB1D58B60DB9739DCA2BB368.txt”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
Redirection #1 (www.domain.co.il): http://www.domain.co.il/.well-known/pki-validation/EEDAD2F1FBF9E7A4BF355BA270741E73.txt → https://www.karolhair.co.il/.well-known/pki-validation/EEDAD2F1FBF9E7A4BF355BA270741E73.txt
ERROR “cPanel (powered by Sectigo)” forbids DCV HTTP redirections.
WARN Local HTTP DCV error (www.domain.co.il): The system queried for a temporary file at “https://www.domain.co.il/.well-known/pki-validation/EEDAD2F1FBF9E7A4BF355BA270741E73.txt”, which was redirected from “http://www.domain.co.il/.well-known/pki-validation/EEDAD2F1FBF9E7A4BF355BA270741E73.txt”. The web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist. The domain “www.domain.co.il” resolved to an IP address “109.207.77.246” that does not exist on this server.
WARN Local HTTP DCV error (mail.domain.co.il): The system queried for a temporary file at “http://mail.domain.co.il/.well-known/pki-validation/B9B44143576FF07C4EF1C079DF2FCA20.txt”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist. The domain “mail.domain.co.il” resolved to an IP address “109.207.77.246” that does not exist on this server.
WARN Local HTTP DCV error (domain.com.karolhair.co.il): “domain.co.il” does not resolve to any IP addresses on the internet.
WARN Local HTTP DCV error (domain.co.il): “www.domain.com.domain.co.il” does not resolve to any IP addresses on the internet.
11:17:12 AM Verifying local authority for 8 domains …
11:17:12 AM No local authority: “domain.com”
No local authority: “www.domain.co.il”
No local authority: “www.domain.com”
No local authority: “mail.domain.com”
No local authority: “domain.co.il”
No local authority: “mail.domain.co.il”
No local authority: “domain.com.domain.co.il”
No local authority: “www.domain.com.domain.co.il”
11:17:12 AM No local DNS DCV is necessary.
11:17:12 AM Processing “domain”’s local DCV results …
11:17:12 AM Analyzing “domain.co.il”’s DCV results …
11:17:12 AM ERROR Impediment: TOTAL_DCV_FAILURE: Every domain failed DCV.
11:17:12 AM Analyzing “domain.com.domain.co.il”’s DCV results …
11:17:12 AM ERROR Impediment: TOTAL_DCV_FAILURE: Every domain failed DCV.
11:17:12 AM The system has completed “domain”’s AutoSSL check.
 
Last edited by a moderator:

SS-Maddy

Well-Known Member
Mar 28, 2009
130
18
68
cPanel Access Level
Root Administrator
The domain “domain.com” resolved to an IP address “109.207.77.246” that does not exist on this server. could be the key to your issue. It could be really related to CloudLinux upgrade, but do check in these lines too. It may be the IP, if it really belong to your server, may be missing after the update. You could try service ipaliases restart or in your low traffic times, go to WHM >> Home >> Service Configuration >> Service Manager enable and disable the IPAliases service there and enable monitor too.

Do take a copy of /etc/ips before you take this step.
 
Last edited by a moderator: