- Newest
- Most votes
- Most comments
Hello there,
My check list:
- Check if there is no additional characters or is missing characters
- Check if there is no repeating bare domain to the end of its DNS records
- Resolve the CNAME record using nslookup or dig and next I will check the below steps https://docs.aws.amazon.com/acm/latest/userguide/troubleshooting-DNS-validation.html
For your case just want to check, when we perform the dig to the CNAME record are we seeing response. If not, then we need to check on which Public hosted our domain is configured (often we create multiple HZ's and end-up adding in wrong HZ)
Hi there,
It's worth noting that the verification will timeout after 72 hours, so it will be possible you'll have to set this certificate up again.
In the mean time, check that your verification has been copied and pasted into Route53 correctly. A common mistake is to copy the full verification record, including the target domain, which then causes a double domain reference. e.g. _a79865eb4cd1a6ab990a45779b4e0b96.example.com.example.com.
Check that you have not done this by accident.
Ensure that you have not stripped the _ from the start of the verification record too.
Relevant content
- Accepted Answerasked 10 months ago
- Accepted Answerasked a year ago
AWS OFFICIALUpdated a year ago- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
