[英]How to validate domain with AWS certificate manager
I own a domain that I purchased through GoDaddy. 我拥有通过GoDaddy购买的域名。 I am trying to get a certificate for this domain through AWS using Certificate Manager. 我正在尝试使用证书管理器通过AWS获取此域的证书。 If it's relevant, the purpose of obtaining a certificate is to be able to host a package repository on S3, using this tutorial: https://novemberfive.co/blog/opensource-pypi-package-repository-tutorial/ 如果相关,那么使用此教程,可以在S3上托管软件包存储库,从而获得证书: https : //novemberfive.co/blog/opensource-pypi-package-repository-tutorial/
So far I've been unable to validate my domain. 到目前为止,我一直无法验证我的域。 Let's call the domain foo.com I've attempted the following: 我们将以下域名称为foo.com:
Please help? 请帮忙? How do I validate? 如何验证?
As you mentioned are two types of domain validation for issuing SSL certs. 正如您所提到的,用于发行SSL证书的两种域验证类型。
DNS: DNS:
With DNS, you need to create CNAME record. 使用DNS,您需要创建CNAME记录。 How to create CNAME record with godaddy, 如何使用Godaddy创建CNAME记录,
https://www.godaddy.com/help/add-a-cname-record-19236 https://www.godaddy.com/help/add-a-cname-record-19236
Once you create DNS record, you may have to wait for DNS propagation. 创建DNS记录后,您可能必须等待DNS传播。 Usually the max time is 48 hours. 通常,最长时间为48小时。
Alternatively, if you are going to use this domain fully with AWS, you can create a NS recordset in Route 53 with AWS and have your DNS more reliable. 或者,如果您打算将该域完全与AWS结合使用,则可以在Route 53中与AWS一起创建NS记录集,并使DNS更可靠。
A more detailed documentation on DNS setup for SSL Certs, 有关SSL证书的DNS设置的更详细的文档,
https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-validate-dns.html https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-validate-dns.html
Email: 电子邮件:
Usually email will be sent to whois record of your domain and emails to the following addresses in the domain, 通常,电子邮件将发送到您的域的whois记录,电子邮件将发送到该域中的以下地址,
administrator@your_domain_name
hostmaster@your_domain_name
postmaster@your_domain_name
webmaster@your_domain_name
admin@your_domain_name
More info on email validation and if you encounter issues is well documented under, 有关电子邮件验证的更多信息,如果遇到问题,请参见以下内容,
https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-validate-email.html https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-validate-email.html
Even with all the cases, sometimes the validation might fail. 即使在所有情况下,有时验证也可能失败。 You can open a support ticket and ask for help with AWS support. 您可以打开支持凭单,并寻求有关AWS支持的帮助。
Hope it helps. 希望能帮助到你。
It's so simple. 很简单 When you create the certificate ACM provide two option to validate. 创建证书时,ACM提供两个选项来进行验证。 If you opt email validation then you will get email on above said email id just click on it your domain will be verified. 如果您选择电子邮件验证,那么您将在上述电子邮件ID上方收到电子邮件,只需单击它即可验证您的域。 If you want DNS validation then use the below steps. 如果要进行DNS验证,请使用以下步骤。
Kannaiyan already provided details steps Kannaiyan已经提供了详细步骤
In a nutshell ( DNS validation method)- 简而言之(DNS验证方法)-
Step 1. Request Public certificate in Amazon Certificate manager ( ACM) 步骤1.在Amazon Certificate Manager(ACM)中请求公共证书
Step 2. Create CNAME record in Godaddy 步骤2.在Godaddy中创建CNAME记录
Here are screenshots from AWS ACM and Godaddy 这是AWS ACM和Godaddy的屏幕截图
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.