1

I feel like I'm taking crazy pills, because I've completed this process before and my configuration seems to match AWS' docs. But, every time I request a new certificate, I get this error message (usually less than a minute after making the request):

The status of this certificate request is "Failed". One or more domain names have failed validation due to a Certificate Authority Authentication (CAA) error. Learn more.

I've requested a public certificate with two domain names: "mydomain.us" and "*.mydomain.us". I chose email validation and did not apply any tags. I copied the CNAME record (_1234567890etc.mydomain.us.) into NameCheap and added a CAA record as well.

CAA Record @ 0 issue "amazon.com" Automatic

NameCheap (domain registrar): DNS Config on NameCheap

Immediately after request: ACM during validation

After validation fails: ACM failed

Any idea what I'm doing wrong? Thanks in advance.

Edit: More screenshots

carpiediem
  • 111
  • 3
  • 1
    At what point are you getting that message? What is the domain name you're trying to use? Knowing the domain name makes helping you easier in some cases. Screenshots might also be useful. Suggest editing your post rather than using comments. – Tim Oct 05 '21 at 01:58
  • How / when does the status go from "pending" to "failed". Please try to add all the steps or events to your question. – Tim Oct 05 '21 at 18:38
  • There's no step in between, the content of the page simply updates. As I said, this is usually less than a minute after making the request. – carpiediem Oct 06 '21 at 22:58
  • I'd have to do the research to try to work this out, same as you. If you don't get an answer get AWS Support for a month, they're pretty helpful. – Tim Oct 07 '21 at 01:45

0 Answers0