SSL Certificate has expired #45
Comments
|
So, I've tracked this down to another CAA record problem. I have no idea how we actually managed to get a working SSL certificate when we set this up. I guess the I've posted about the issue in their support forum here: https://community.netlify.com/t/no-caa-on-netlify-subdomains/19796 (which is the only support free users get). If we are feeling stressed out by SSL on providers.optimade.org temporarily being out of order, the only quick solution would be to provision a separate sectigo certificate also for this subdomain. However, I suggest we wait until we at least get a response from netlify to see if this is something they may be interested in looking into at their side, since the key issue is a configuration difference between their setup and GitHub pages in regards to CAA records. |
|
Couldn’t you exclude returning back to Github pages? |
|
@blokhin All parts of the CAA record resolution is outside our control, so there isn't anything we can "exclude". This is how the lookup goes:
|
|
I'm starting to grasp the full complexity of this issue, and I don't think I can negotiate with Netlify for them to make changes that possibly will impact other customers... The "in English please" version is that, for subdomains under @gmrigna Do you / UCLovain pay something per sectigo certificate? A shortcut to solve this issue would be to install a manual sectigo cert also for |
|
@rartino The process is under way. As soon as I get the certificate, we will proceed like last time... |
|
@gmrigna Thanks for getting the certificate. Everything seems to be in order now. I don't see any errors from https://providers.optimade.org/ |
|
@rartino Thank you! |
For some reason netlify has issues renewing the let's encrypt certificate for providers.optimade.org. This is the error message:
I'm investigating.
The text was updated successfully, but these errors were encountered: