Navigation

    APPDRAG Community
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Popular

    REMINDER

    Please be respectful of all AppDragers! Keep it really civil so that we can make the AppDrag community of builders as embracing, positive and inspiring as possible.

    SOLVED How do I activate SSL on my host site?

    How-to, Tutorials
    2
    9
    351
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      Team Dawes last edited by

      I'm getting this message in appdrag when I click the Main domain & SSL feature:
      SSL Status:

      You need to add this CNAME in your domain provider to validate the SSL certificate
      CNAME Key: _d561c9638c05688b1795fa9aa1bd438d
      CNAME value: _3e06a47c5dda9fa14e0778be51a41984.xlfgrmvvlj.acm-validations.aws.

      I put this entry in my domain provider:
      CNAME Record
      Host: _d561c9638c05688b1795fa9aa1bd438d
      Value:
      _3e06a47c5dda9fa14e0778be51a41984.xlfgrmvvlj.acm-validations.aws.

      I still get the error in Appdrag. How do I fix it?

      Joseph Benguira 1 Reply Last reply Reply Quote 0
      • Joseph Benguira
        Joseph Benguira @Team Dawes last edited by Joseph Benguira

        @team-dawes said in How do I activate SSL on my host site?:

        _d561c9638c05688b1795fa9aa1bd438d

        issue is you have a CAA dns record on your domain that is preventing AWS ACM to generate the certificate, please add this dns records to allow AWS to generate certificates for your domain:

        toolk.it.com. IN CAA 0 issue "amazon.com"
        toolk.it.com. IN CAA 0 issuewild "amazon.com"

        T 1 Reply Last reply Reply Quote 0
        • T
          Team Dawes @Joseph Benguira last edited by

          @joseph-benguira ,
          Thanks for the advice.

          I added them:
          CAA Record toolk.it.com 0 issue "amazon.com"

          CAA Record toolk.it.com 0 issuewild "amazon.com"

          1 Reply Last reply Reply Quote 0
          • T
            Team Dawes last edited by

            I did what you suggested. There's a reply from me waiting in your queue.
            I came back to this site and it said it was waiting to post the certificate.
            I came back 15 minutes later and got this:

            You need to add this CNAME in your domain provider to validate the SSL certificate
            CNAME Key: _d561c9638c05688b1795fa9aa1bd438d
            CNAME value: _3e06a47c5dda9fa14e0778be51a41984.xlfgrmvvlj.acm-validations.aws.

            which again is already in my CNAME.

            Joseph Benguira 1 Reply Last reply Reply Quote 0
            • Joseph Benguira
              Joseph Benguira @Team Dawes last edited by

              @team-dawes said in How do I activate SSL on my host site?:

              _d561c9638c05688b1795fa9aa1bd438d

              I can see the DNS verification is OK
              but AWS ACM still return an error when generating your certificate:
              "FailureReason":"CAA_ERROR"

              I've checked if you added the CAA records, and it seems they are not there, you can check it here:
              https://dnschecker.org/#CAA/toolk.it.com

              1 Reply Last reply Reply Quote 1
              • T
                Team Dawes last edited by

                Hey Joseph, I think I have it all set up.
                And the site isn't showing at all.

                toolkit dns.jpg

                What needs to happen?

                Joseph Benguira 1 Reply Last reply Reply Quote 0
                • Joseph Benguira
                  Joseph Benguira @Team Dawes last edited by

                  @team-dawes issue is the CAA record seems not propagated as you can see here:
                  https://dnschecker.org/#CAA/toolk.it.com

                  T 1 Reply Last reply Reply Quote 1
                  • T
                    Team Dawes @Joseph Benguira last edited by

                    @joseph-benguira, yes, I get that the CAA record hasn't propagated. I check it every day, a couple of times a day.
                    What's my next step?
                    How do I get it to propagate?

                    Joseph Benguira 1 Reply Last reply Reply Quote 0
                    • Joseph Benguira
                      Joseph Benguira @Team Dawes last edited by

                      @team-dawes you have to contact your registrar, it should be propagated in few hours, not taking days. Only the registrar can help with that.

                      Another option is to use cloudflare:
                      https://support.appdrag.com/doc/Use-CloudFlare-and-Activate-SSL

                      1 Reply Last reply Reply Quote 1
                      • First post
                        Last post