By using AWS re:Post, you agree to the Terms of Use

AWS Certificate Manager-validation

0

Hello, I have long been waiting for AWS Certificate Manager validation to use my DNS name. But it hasn't still been validated. I created Cname records in Route 53, and I can see that record. And I got my DNS name from AWS before. What can be the reason?

2 Answers
1

Hello there,

My check list:

  • Check if there is no additional characters or is missing characters
  • Check if there is no repeating bare domain to the end of its DNS records
  • Resolve the CNAME record using nslookup or dig and next I will check the below steps

https://docs.aws.amazon.com/acm/latest/userguide/troubleshooting-DNS-validation.html

For your case just want to check, when we perform the dig to the CNAME record are we seeing response. If not, then we need to check on which Public hosted our domain is configured (often we create multiple HZ's and end-up adding in wrong HZ)

profile picture
answered 22 days ago
0

Hi there,

It's worth noting that the verification will timeout after 72 hours, so it will be possible you'll have to set this certificate up again.

In the mean time, check that your verification has been copied and pasted into Route53 correctly. A common mistake is to copy the full verification record, including the target domain, which then causes a double domain reference. e.g. _a79865eb4cd1a6ab990a45779b4e0b96.example.com.example.com.

Check that you have not done this by accident.

Ensure that you have not stripped the _ from the start of the verification record too.

profile picture
answered 22 days ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions