Plesk droplet: Unable to secure site with Let's Encrypt - need help for beginner

Hello all,

I am new to using Digital Ocean and Plesk, so please pardon some of my technical weaknesses.

I installed a Plesk droplet (Ubuntu) and pointed my domain to the droplet. All that works fine. I installed Wordpress using Plesk, and that works fine too. I can access my domain, no problem.

The issue I have is that I simply am unable to install the Let’s Encrypt SSL via Plesk. Each time I try that, I get an error like this:

==== Details Could not issue a Let’s Encrypt SSL/TLS certificate for Authorization for the domain failed.

Details Invalid response from


Type: urn:ietf:params:acme:error:dns

Status: 400

Detail: DNS problem: NXDOMAIN looking up TXT for - check that a DNS record exists for this domain


I’m not very technically savvy about DNS. I don’t know what I’m supposed to do. My DNS entries in Digital Ocean have their A records. I don’t have any entry for TXT but I have no idea what I’m supposed to put there.

Can someone please help? It’s probably something simple but I have no idea what to look for.

Submit an answer

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Want to learn more? Join the DigitalOcean Community!

Join our DigitalOcean community of over a million developers for free! Get help and share knowledge in Q&A, subscribe to topics of interest, and get courses and tools that will help you grow as a developer and scale your project or business.

Hi there @dan15000,

As far as I can see the problem is due to the fact that your TXT record has been added under your Plesk DNS zone, however, your active DNS zone is under your DigitalOcean account.

What I could suggest is trying to manually copy over your TXT record for from your Plesk control panel to your DigitalOcean DNS zone. Then after that try to issue the Let’s Encrypt Certificate again.

If this does not work I would recommend trying out this Plesk extension here:

It will allow your Plesk DNS zone to be synced with your actual DigitalOcean DNS zone.

Hope that this helps! Regards, Bobby