Navigation

    APPDRAG Community

    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Popular

    REMINDER

    Please be respectful of all AppDragers! Keep it really civil so that we can make the AppDrag community of builders as embracing, positive and inspiring as possible.

    SOLVED How do I activate SSL on my host site?

    How-to, Tutorials
    2
    19
    679
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      Team Dawes last edited by

      I'm getting this message in appdrag when I click the Main domain & SSL feature:
      SSL Status:

      You need to add this CNAME in your domain provider to validate the SSL certificate
      CNAME Key: _d561c9638c05688b1795fa9aa1bd438d
      CNAME value: _3e06a47c5dda9fa14e0778be51a41984.xlfgrmvvlj.acm-validations.aws.

      I put this entry in my domain provider:
      CNAME Record
      Host: _d561c9638c05688b1795fa9aa1bd438d
      Value:
      _3e06a47c5dda9fa14e0778be51a41984.xlfgrmvvlj.acm-validations.aws.

      I still get the error in Appdrag. How do I fix it?

      Joseph Benguira 1 Reply Last reply Reply Quote 0
      • Joseph Benguira
        Joseph Benguira @Team Dawes last edited by Joseph Benguira

        @team-dawes said in How do I activate SSL on my host site?:

        _d561c9638c05688b1795fa9aa1bd438d

        issue is you have a CAA dns record on your domain that is preventing AWS ACM to generate the certificate, please add this dns records to allow AWS to generate certificates for your domain:

        toolk.it.com. IN CAA 0 issue "amazon.com"
        toolk.it.com. IN CAA 0 issuewild "amazon.com"

        T 1 Reply Last reply Reply Quote 0
        • T
          Team Dawes @Joseph Benguira last edited by

          @joseph-benguira ,
          Thanks for the advice.

          I added them:
          CAA Record toolk.it.com 0 issue "amazon.com"

          CAA Record toolk.it.com 0 issuewild "amazon.com"

          1 Reply Last reply Reply Quote 0
          • T
            Team Dawes last edited by

            I did what you suggested. There's a reply from me waiting in your queue.
            I came back to this site and it said it was waiting to post the certificate.
            I came back 15 minutes later and got this:

            You need to add this CNAME in your domain provider to validate the SSL certificate
            CNAME Key: _d561c9638c05688b1795fa9aa1bd438d
            CNAME value: _3e06a47c5dda9fa14e0778be51a41984.xlfgrmvvlj.acm-validations.aws.

            which again is already in my CNAME.

            Joseph Benguira 1 Reply Last reply Reply Quote 0
            • Joseph Benguira
              Joseph Benguira @Team Dawes last edited by

              @team-dawes said in How do I activate SSL on my host site?:

              _d561c9638c05688b1795fa9aa1bd438d

              I can see the DNS verification is OK
              but AWS ACM still return an error when generating your certificate:
              "FailureReason":"CAA_ERROR"

              I've checked if you added the CAA records, and it seems they are not there, you can check it here:
              https://dnschecker.org/#CAA/toolk.it.com

              1 Reply Last reply Reply Quote 1
              • T
                Team Dawes last edited by

                Hey Joseph, I think I have it all set up.
                And the site isn't showing at all.

                toolkit dns.jpg

                What needs to happen?

                Joseph Benguira 1 Reply Last reply Reply Quote 0
                • Joseph Benguira
                  Joseph Benguira @Team Dawes last edited by

                  @team-dawes issue is the CAA record seems not propagated as you can see here:
                  https://dnschecker.org/#CAA/toolk.it.com

                  T 1 Reply Last reply Reply Quote 1
                  • T
                    Team Dawes @Joseph Benguira last edited by

                    @joseph-benguira, yes, I get that the CAA record hasn't propagated. I check it every day, a couple of times a day.
                    What's my next step?
                    How do I get it to propagate?

                    Joseph Benguira 1 Reply Last reply Reply Quote 0
                    • Joseph Benguira
                      Joseph Benguira @Team Dawes last edited by

                      @team-dawes you have to contact your registrar, it should be propagated in few hours, not taking days. Only the registrar can help with that.

                      Another option is to use cloudflare:
                      https://support.appdrag.com/doc/Use-CloudFlare-and-Activate-SSL

                      T 2 Replies Last reply Reply Quote 1
                      • T
                        Team Dawes @Joseph Benguira last edited by

                        @joseph-benguira , if this issue comes down to - who provides SSL for my website
                        why don't I just use SSL from NameCheap? They give me SSL when I buy a domain.

                        Questions:

                        1. Can I turn on the SSL at Namecheap and use that even though they won't be hosting my website?
                        2. If I do turn on the SSL at NameCheap, can I still use connect to Appdrag?
                        3. If I'm not using SSL from Amazon, then
                          Do I still need the CNAME record for AWS?
                          Do I still need the CAA Records?
                        1 Reply Last reply Reply Quote 0
                        • T
                          Team Dawes @Joseph Benguira last edited by

                          @joseph-benguira ,
                          OK, toolk.it.com is up and discoverable, I believe.
                          I'm not sure where the SSL is coming from. I have SSL from Namecheap.
                          Should I be using that?

                          Joseph Benguira 1 Reply Last reply Reply Quote 0
                          • Joseph Benguira
                            Joseph Benguira @Team Dawes last edited by

                            @team-dawes No you can't use SSL from namecheap since they are not doing the hosting process, only alternative is Cloudflare because they offer a free reverse proxy system including SSL termination

                            or go back to step 1, fix your DNS CAA record
                            https://dnschecker.org/#CAA/toolk.it.com

                            for that please ask help to your registrar, or migrate to Cloudflare they will handle your nameservers

                            T 2 Replies Last reply Reply Quote 1
                            • T
                              Team Dawes @Joseph Benguira last edited by

                              @joseph-benguira , thanks for your help
                              I've spent about 2 1/2 hours in chat with Namecheap trying to get this work.
                              And I'm having no luck. I'm trying to go back to basics and I'm getting this error on appdrag.
                              Error on appdrag.jpg

                              Joseph Benguira 1 Reply Last reply Reply Quote 0
                              • T
                                Team Dawes @Joseph Benguira last edited by

                                @joseph-benguira ,
                                I thought it might simplify matters to transfer my domain to appdrag.
                                I'm getting this
                                domain not available for transfer.jpg

                                Joseph Benguira 1 Reply Last reply Reply Quote 0
                                • Joseph Benguira
                                  Joseph Benguira @Team Dawes last edited by

                                  @team-dawes this message happens when domain is already connected to your project, you can't do it twice

                                  1 Reply Last reply Reply Quote 0
                                  • Joseph Benguira
                                    Joseph Benguira @Team Dawes last edited by

                                    @team-dawes indeed we do not support your domain extension ".it.com"

                                    T 2 Replies Last reply Reply Quote 1
                                    • T
                                      Team Dawes @Joseph Benguira last edited by

                                      @joseph-benguira , thanks.
                                      I'm glad to get resolution on this.

                                      1 Reply Last reply Reply Quote 0
                                      • T
                                        Team Dawes @Joseph Benguira last edited by

                                        @joseph-benguira - given that appdrag doesn't support .it.com, I'd like to change the domain for this project
                                        From toolk.it.com
                                        To swaysmarts.com

                                        How and where would I do that?

                                        Thanks!

                                        Joseph Benguira 1 Reply Last reply Reply Quote 0
                                        • Joseph Benguira
                                          Joseph Benguira @Team Dawes last edited by

                                          @team-dawes what you can do is add the domain in your project, then you can set it as main domain and activate the SSL

                                          If it's a domain you have with another registrar you can follow this guide:
                                          https://support.appdrag.com/doc/Connecting-a-Domain

                                          1 Reply Last reply Reply Quote 1
                                          • First post
                                            Last post