Question

How to set up the certificate for Space?

Hello, my domain is on GoDaddy and I have a Digital Ocean droplet. I’ve created a Space for storage use (no CDN) and I need to add the certificate.

When I use Let’s Encrypt I have this errore message: failed to validate nameserver records: a non DigitalOcean Name Server was found for mydomain.com domain

The website is working fine with the droplet.

What I’m doing wrong?


Submit an answer


This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Bobby Iliev
Site Moderator
Site Moderator badge
January 27, 2024

Hey!

When using Let’s Encrypt with DigitalOcean’s Spaces, it’s important that your domain’s DNS needs to be managed by DigitalOcean. This is because of the way the Let’s Encrypt implementation for the Spaces works and needs to verify domain ownership, which it does by checking DNS records. If your domain’s DNS is not managed by DigitalOcean, the automated Let’s Encrypt validation won’t be able to complete this verification.

Since your domain is on GoDaddy, and you’re receiving an error indicating a non-DigitalOcean nameserver, it suggests that your DNS records are still managed by GoDaddy. To resolve this, you have a couple of options:

  1. Transfer DNS Management to DigitalOcean: You can change your domain’s nameserver records on GoDaddy to point to DigitalOcean’s nameservers. This would allow DigitalOcean to manage your DNS, and Let’s Encrypt should be able to verify your domain successfully. However, be aware that changing nameservers can affect other services associated with your domain. So you will need to first re-create all of your DNS records in your DigitalOcean account and only then change your nameservers.

  2. Use a Different SSL Certificate Provider: If transferring DNS management is not feasible, you might consider using a different SSL certificate provider that doesn’t require DNS verification through DigitalOcean. You can then manually upload this certificate to DigitalOcean:

https://docs.digitalocean.com/products/spaces/how-to/customize-cdn-endpoint/

Let me know how it goes!

Best,

Bobby

Try DigitalOcean for free

Click below to sign up and get $200 of credit to try our products over 60 days!

Sign up

Featured on Community

Get our biweekly newsletter

Sign up for Infrastructure as a Newsletter.

Hollie's Hub for Good

Working on improving health and education, reducing inequality, and spurring economic growth? We'd like to help.

Become a contributor

Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

Welcome to the developer cloud

DigitalOcean makes it simple to launch in the cloud and scale up as you grow — whether you're running one virtual machine or ten thousand.

Learn more