Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Invalid domain name error #42

Open
carev01 opened this issue Oct 3, 2024 · 3 comments
Open

Invalid domain name error #42

carev01 opened this issue Oct 3, 2024 · 3 comments

Comments

@carev01
Copy link

carev01 commented Oct 3, 2024

Hi, thanks for this awesome project. I deployed it according to the provided instructions and can access the service definition page normally. However, when trying to request a certificate with certbot, it runs into an "invalid domain name" error:

{"@t":"2024-10-03T01:07:20.8835537Z","@m":"Tried using Config "xxxxxx.area51.local\area51-xxxxxxx-CA" and Template "ACMETemplate" to issue certificate","@i":"171e7241","@l":"Error","CAServer":"xxxxxxx.area51.local\area51-xxxxxxx-CA","TemplateName":"ACMETemplate","SourceContext":"TGIT.ACME.Protocol.IssuanceServices.ADCS.CertificateIssuer"}
{"@t":"2024-10-03T01:07:20.8840764Z","@m":"Exception has been raised during certificate issuance.","@i":"34777d5d","@l":"Error","@x":"System.Runtime.InteropServices.COMException (0x800704BC): CCertRequest::Submit: The format of the specified domain name is invalid. 0x800704bc (WIN32: 1212 ERROR_INVALID_DOMAINNAME)\r\n at CERTCLILib.CCertRequestClass.Submit(Int32 Flags, String strRequest, String strAttributes, String strConfig)\r\n at TGIT.ACME.Protocol.IssuanceServices.ADCS.CertificateIssuer.IssueCertificate(String csr, CancellationToken cancellationToken) in D:\Th11s\ACME-Server-ADCS\src\ACME.CertProvider.ADCS\CertificateIssuer.cs:line 37","SourceContext":"TGIT.ACME.Protocol.IssuanceServices.ADCS.CertificateIssuer"}

The request does not seem to make it through to the ADCS, as I don't see any failed requests or anything in its logs. Any hint on what might be the problem?
@glatzert
Copy link
Owner

glatzert commented Oct 3, 2024

It uses Windows COMObjects to create the actual certificate request. It seems not to like your domain name. Can you tell the domain of the request?

@carev01
Copy link
Author

carev01 commented Oct 3, 2024

The domain of the request was alpcipve-linux01.area51.local, although I also tried without the hyphen (alpcipvelinux01.area51.local) and ran into the same results.

@glatzert
Copy link
Owner

glatzert commented Oct 4, 2024
edited
Loading

I tried to find a list what windows would recognize as misformatted domain names, but failed.
My guess would be, that it does not like the .local "TLD" (which is probably a bad idea to use for a lot of reasons).

Edit: hostnames containing - and such are not an issue with the tool.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@glatzert @carev01