A few days ago, a mitigation was implemented which appears to have helped with the number of failed requests. Many SSL requests still fail due to the extremely strict verification requirements from Let’s Encrypt.
Here are some things you can do to help increase the chances your certificate will be issued:
- Make sure you are using ns1.epizy.com and ns2.epizy.com, and NOT the byet.org nameservers. The mitigation has been implemented only on epizy.com.
- Make sure your CNAME records have been present a few hours before trying to issue the certificate, even if the DNS records check in the client area says your DNS is OK.
- Ensure your CNAME records remain present on your domain name until the certificate is fully issued. In fact, you can keep the CNAME records on your domain for as long as you’re using our SSL certificates. If you want to renew your SSL certificates in a few months, it helps a lot if your CNAME records are already there.