Certification Authority Authorization (CAA) records stand for DNS entries for specific domains. In this framework, authorized CAs get the power to provide usage access, which helps in limiting unlawful activities.
Simple Steps to Add CAA Records
To configure CAA records, you can proceed with the following straightforward steps:
1. Accessing DNS Zone Editor
Account Login > Access DNS Zone Editor
2. Select CAA under Record Type
Manage DNS records section > Choose the CAA option.
Selecting the Right Values
When you start adding or editing the CAA records, ensure you enter the correct values.
– Name (Host)
- Main Domain: Use @.
- Subdomains: Use store.
– Flag
- Default: 0.
- Use 1 to block validation.
– Tag
– Issue
It gives authorization to CA to issue a certificate.
– issuewild
It enables CA to issue a wildcard certificate.
– iodef
Using this URL, CA can submit its reports.
Use the above tags to set the necessary settings.
– CA Domain
Mention the Certificate Authority (CA).
– TTL (Time To Live)
Keep default values.
CAA Records: Addition & Deletion
You should maintain consistency with CAA records. It is advisable to set them to default values without any change. When you delete any record, it could halt SSL certificate configuration.
- Record Updating: Search the TXT record > click edit icon > adjust the value.
- Record Deletion: Search the TXT record > select delete
When you complete an addition or update in your DNS zone settings, it is recommended to wait for 24 hours for successful DNS propagation.
