ACME certificate missing issuer info

Gamix · November 4, 2025, 4:54pm

With the recent Goldeye update that removes TrueNAS as a CA, I’ve decided to implement ACME DNS on my Truenas using Cloudflare, this is what I did :

Setup my domain in Cloudflare
Created an API token with : Zone - DNS - Edit / Zone - Zone - Read / Include - Specific Zone mydomain.com
Setup ACME DNS on TrueNAS with Cloudflare, used API token only
Created a CSR request
Created a ACME wildcard certificate using the CSR
Certificate comes with no issuer.

Basically I’ve entered everything in the CSR but the certificates comes empty in those fields : Country, State, City, Organization, Organizational Unit, Email and Signed by.

The only thing I don’t have in the CSR is “Signed by” but everything else is missing. When I use it on a website, in this case I tried qBitTorrent I get : sec_error_unknown_issuer.

What did I do wrong?

dan · November 4, 2025, 5:01pm

Entirely normal; Let’s Encrypt issues DV certificates, which validate only the FQDN(s). As they can’t validate the country, state, etc., they don’t contain that information. Which is yet another reason that the built-in TrueNAS process is nonsensical.

Gamix · November 4, 2025, 5:18pm

I don’t know why, I repeated the entire process and now I don’t have the error anymore. I thought that since some info was missing that it was that. Thanks for the info