existing acme certs are working for existing sites, certs for new sites cannot be added

Hello,
I have one ISPC/Debian12 about 3 months old installation where existing ACME for sites is working and certificates are renewed.
But there is problem, i cannot add new certificate for new site nor aliasdomain certs are created.
New dir is not created in /root/.acme.sh, or site added to /root/.acme.sh/site.tld/site.tld.csr.conf
There is one new task in red color "The following changes are not yet populated to all servers: Update website settings: 1"
Then it dissapears and site is again without "SSL / Let's Encrypt SSLcertificate" checkboxes checked.
Nothing appears in /var/log/ispconfig/acme.log ISPConfig is not even trying to install new cert.
Do you have idea, where to find what could be wrong?
Regards
RH

 

Thank you Till, I found this thread in your link earlier
no error on /usr/local/ispconfig/server/server.sh, no error in log on manual acme.sh OK... debug log OK... it is just not creating certs for the sites

I have been thinking - disable LE for all sites, delete acme completely install it again and run resync ?
not sure it will be created automatically for alias sites, there is about 30 of them... also if /.acme.sh/ca/acme-v02.api.letsencrypt.org will be newly created?

 

....

 

Oh, sorry, i'm lame, new site i was trying to add was not pointed to the server .o]. After DNS change new site was created with ACME cert.

So result: when i add new site, cert is created,
When i try to add alias domain, i'm getting message
WARNING - Could not verify domain domain.tld, so excluding it from letsencrypt request.

When i deleted one of the alias domains and try to add it back, getting same error
WARNING - Could not verify domain
and domain cannot be readded

When i create new site and try to add aliasdomian for that new site, alias domain cert is again not created.

My on may not be realted
From my mind only change which i did on the server was changing hostname for whole server, then i forced update and created new cert for server nane

 

no, it does not, because when i create not alias, but regular website, certificate is created for same site alias cert was not created...
in simple - it is not creating certs for alias pages, it is creating certs just for regular pages, this is my problem...
special weird problem as usual

 

Hello,
i do not want to post full log, as this is clients server with adult site and about 40 aliases...

But here comes the finale...
when i:
- add domainalias and check the "Don't add to Let's Encrypt certificate"
- then uncheck this box in step 2
SSL cert is created
it just says " DEBUG [letsencrypt.inc:393] - Verified domain domain.tld should be reachable for letsencrypt." and it is added to the cert chain with no problem..

Weird, maybe some timeout ??

 

Thank you Till.
I do not want to argue and i appreciate your help. But is not how it seems.
Both added domains are pointing to server for about a week. There was no DNS change between first "Don't add to Let's Encrypt certificate" adding as alias step , and second step when unchecking this checkbox.

FYI, there is about 22 aliasdomains (44 certificate names with www variant), it may have some effect..
I'm happy it works, doesnt matter i have to do i in two steps.