To ensure CloudPano can issue SSL certificates for your white-labeled domains, it is essential to correctly configure your DNS settings, specifically the CAA (Certification Authority Authorization) records. Here’s a step-by-step guide to help you through the process:
Why CAA Records Are Important
CAA records specify which Certificate Authorities (CAs) are allowed to issue SSL certificates for your domain. If your CAA records are too restrictive, CloudPano may not be able to issue the necessary certificates.
Steps to Configure CAA Records
Identify Current CAA Records
Check your domain’s DNS settings to identify any existing CAA records.
Add or Modify CAA Records
If you have existing CAA records, you need to either remove the records OR add a record for CloudPano.
To allow Let's Encrypt (used by CloudPano) to issue SSL certificates, add the following CAA record:
[yourWhitelabeledCloudPanoURL]. CAA 0 issue "letsencrypt.org"
Common Issues and Solutions
Existing Restrictive CAA Records: If you have CAA records that restrict issuance to a specific CA, either remove these records or add additional CAs as needed.
Propagation Delay: DNS changes might take some time to propagate. Allow up to 48 hours for the changes to take full effect.
Syntax Errors: Ensure there are no typos in the CAA record values. Incorrect syntax will prevent the records from being properly recognized.
Example Response from a User
"My domain provider is 20i.com. Can you please provide me with your CAA record details, and I will add them to my DNS?"
Add the following record to your DNS settings:
yourdomain.com. CAA 0 issue "letsencrypt.org"
Following these steps will ensure that CloudPano can issue SSL certificates for your white-labeled domains, providing secure and trusted access for your users.
If you encounter any issues or need further assistance, please contact our support team.