AWS Certificate Request Validation Timeout





.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box;
}







0















I'm trying to request a certificate using AWS certificate manager. I'm using route53 for DNS. I go through all of the steps, and use the "create record in Route53" to create the CNAME record automatically. I have double checked the CNAME record in Route53 to make sure it is the same one that ACM expects. After doing all of this, the DNS validation times out.



I have tried this multiple times with the same result. I barely know how to use dig so I'm kind of lost on how to troubleshoot this. Thanks.






amazon-route53 aws-certificate-manager







share|improve this question





























    0















    I'm trying to request a certificate using AWS certificate manager. I'm using route53 for DNS. I go through all of the steps, and use the "create record in Route53" to create the CNAME record automatically. I have double checked the CNAME record in Route53 to make sure it is the same one that ACM expects. After doing all of this, the DNS validation times out.



    I have tried this multiple times with the same result. I barely know how to use dig so I'm kind of lost on how to troubleshoot this. Thanks.






    amazon-route53 aws-certificate-manager







    share|improve this question

























      0












      0








      0








      I'm trying to request a certificate using AWS certificate manager. I'm using route53 for DNS. I go through all of the steps, and use the "create record in Route53" to create the CNAME record automatically. I have double checked the CNAME record in Route53 to make sure it is the same one that ACM expects. After doing all of this, the DNS validation times out.



      I have tried this multiple times with the same result. I barely know how to use dig so I'm kind of lost on how to troubleshoot this. Thanks.






      amazon-route53 aws-certificate-manager







      share|improve this question














      I'm trying to request a certificate using AWS certificate manager. I'm using route53 for DNS. I go through all of the steps, and use the "create record in Route53" to create the CNAME record automatically. I have double checked the CNAME record in Route53 to make sure it is the same one that ACM expects. After doing all of this, the DNS validation times out.



      I have tried this multiple times with the same result. I barely know how to use dig so I'm kind of lost on how to troubleshoot this. Thanks.






      amazon-route53 aws-certificate-manager




      amazon-route53 aws-certificate-manager






      share|improve this question













      share|improve this question











      share|improve this question




      share|improve this question










      asked Jan 3 at 15:53









      Max PaymarMax Paymar

      285219




      285219
























          2 Answers
          2






          active

          oldest

          votes


















          0














          I was facing a similar issue, where i copied the whole "name" of the CNAME record (from the AWS certificate manager) to the DNS configuration for my domain. And waited a whole day without any success. Then after reading "Michael - sqlbot" answer here, i removed the .example.com from _9022ecb910c52234234234234232xxxx.example.com in my domain's DNS configuration and Amazon Certificate Manager issued the certificate in about next 30 mins.



          Hope you are not making the same mistake :-)






          share|improve this answer
























          • Hi - thanks for your reply. I'm using the "Create Record in Route53" button after creating the certificate, so AWS creates the record for me. I double checked and it's not using .example.com. I tried using dig to troubleshoot and I'm getting this response for querying the CNAME record (and A record for that matter)id 60031 opcode QUERY rcode SERVFAIL flags QR RD RA ;QUESTION maxpaymar.com. IN CNAME ;ANSWER ;AUTHORITY ;ADDITIONAL

            – Max Paymar
            Jan 6 at 5:44













          • I am not an expert in using Dig, but there are two things, that indicate a problem, that i can see in the response you get from Dig. 1. rcode SERVFAIL - i get rcode NOERROR 2. ;QUESTION maxpaymar.com. IN CNAME ; ANSWER <blank> Whereas what i get is.. ;QUESTION www.mydomain.com. IN CNAME ;ANSWER www.mydomain.com. 3599 IN CNAME d2xxw7xx19mpsi.cloudfront.net.

            – Afshar
            Jan 6 at 7:04



















          0














          When I switched my domain from godaddy to AWS, the Name Server records did not automatically update. I thought they would but I actually had to change them manually from the AWS console.






          share|improve this answer
























            Your Answer






            StackExchange.ifUsing("editor", function () {
            StackExchange.using("externalEditor", function () {
            StackExchange.using("snippets", function () {
            StackExchange.snippets.init();
            });
            });
            }, "code-snippets");

            StackExchange.ready(function() {
            var channelOptions = {
            tags: "".split(" "),
            id: "1"
            };
            initTagRenderer("".split(" "), "".split(" "), channelOptions);

            StackExchange.using("externalEditor", function() {
            // Have to fire editor after snippets, if snippets enabled
            if (StackExchange.settings.snippets.snippetsEnabled) {
            StackExchange.using("snippets", function() {
            createEditor();
            });
            }
            else {
            createEditor();
            }
            });

            function createEditor() {
            StackExchange.prepareEditor({
            heartbeatType: 'answer',
            autoActivateHeartbeat: false,
            convertImagesToLinks: true,
            noModals: true,
            showLowRepImageUploadWarning: true,
            reputationToPostImages: 10,
            bindNavPrevention: true,
            postfix: "",
            imageUploader: {
            brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
            contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
            allowUrls: true
            },
            onDemand: true,
            discardSelector: ".discard-answer"
            ,immediatelyShowMarkdownHelp:true
            });


            }
            });














            draft saved

            draft discarded


















            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f54025660%2faws-certificate-request-validation-timeout%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown

























            2 Answers
            2






            active

            oldest

            votes








            2 Answers
            2






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes









            0














            I was facing a similar issue, where i copied the whole "name" of the CNAME record (from the AWS certificate manager) to the DNS configuration for my domain. And waited a whole day without any success. Then after reading "Michael - sqlbot" answer here, i removed the .example.com from _9022ecb910c52234234234234232xxxx.example.com in my domain's DNS configuration and Amazon Certificate Manager issued the certificate in about next 30 mins.



            Hope you are not making the same mistake :-)






            share|improve this answer
























            • Hi - thanks for your reply. I'm using the "Create Record in Route53" button after creating the certificate, so AWS creates the record for me. I double checked and it's not using .example.com. I tried using dig to troubleshoot and I'm getting this response for querying the CNAME record (and A record for that matter)id 60031 opcode QUERY rcode SERVFAIL flags QR RD RA ;QUESTION maxpaymar.com. IN CNAME ;ANSWER ;AUTHORITY ;ADDITIONAL

              – Max Paymar
              Jan 6 at 5:44













            • I am not an expert in using Dig, but there are two things, that indicate a problem, that i can see in the response you get from Dig. 1. rcode SERVFAIL - i get rcode NOERROR 2. ;QUESTION maxpaymar.com. IN CNAME ; ANSWER <blank> Whereas what i get is.. ;QUESTION www.mydomain.com. IN CNAME ;ANSWER www.mydomain.com. 3599 IN CNAME d2xxw7xx19mpsi.cloudfront.net.

              – Afshar
              Jan 6 at 7:04
















            0














            I was facing a similar issue, where i copied the whole "name" of the CNAME record (from the AWS certificate manager) to the DNS configuration for my domain. And waited a whole day without any success. Then after reading "Michael - sqlbot" answer here, i removed the .example.com from _9022ecb910c52234234234234232xxxx.example.com in my domain's DNS configuration and Amazon Certificate Manager issued the certificate in about next 30 mins.



            Hope you are not making the same mistake :-)






            share|improve this answer
























            • Hi - thanks for your reply. I'm using the "Create Record in Route53" button after creating the certificate, so AWS creates the record for me. I double checked and it's not using .example.com. I tried using dig to troubleshoot and I'm getting this response for querying the CNAME record (and A record for that matter)id 60031 opcode QUERY rcode SERVFAIL flags QR RD RA ;QUESTION maxpaymar.com. IN CNAME ;ANSWER ;AUTHORITY ;ADDITIONAL

              – Max Paymar
              Jan 6 at 5:44













            • I am not an expert in using Dig, but there are two things, that indicate a problem, that i can see in the response you get from Dig. 1. rcode SERVFAIL - i get rcode NOERROR 2. ;QUESTION maxpaymar.com. IN CNAME ; ANSWER <blank> Whereas what i get is.. ;QUESTION www.mydomain.com. IN CNAME ;ANSWER www.mydomain.com. 3599 IN CNAME d2xxw7xx19mpsi.cloudfront.net.

              – Afshar
              Jan 6 at 7:04














            0












            0








            0







            I was facing a similar issue, where i copied the whole "name" of the CNAME record (from the AWS certificate manager) to the DNS configuration for my domain. And waited a whole day without any success. Then after reading "Michael - sqlbot" answer here, i removed the .example.com from _9022ecb910c52234234234234232xxxx.example.com in my domain's DNS configuration and Amazon Certificate Manager issued the certificate in about next 30 mins.



            Hope you are not making the same mistake :-)






            share|improve this answer













            I was facing a similar issue, where i copied the whole "name" of the CNAME record (from the AWS certificate manager) to the DNS configuration for my domain. And waited a whole day without any success. Then after reading "Michael - sqlbot" answer here, i removed the .example.com from _9022ecb910c52234234234234232xxxx.example.com in my domain's DNS configuration and Amazon Certificate Manager issued the certificate in about next 30 mins.



            Hope you are not making the same mistake :-)







            share|improve this answer












            share|improve this answer



            share|improve this answer










            answered Jan 5 at 16:29









            AfsharAfshar

            14227




            14227













            • Hi - thanks for your reply. I'm using the "Create Record in Route53" button after creating the certificate, so AWS creates the record for me. I double checked and it's not using .example.com. I tried using dig to troubleshoot and I'm getting this response for querying the CNAME record (and A record for that matter)id 60031 opcode QUERY rcode SERVFAIL flags QR RD RA ;QUESTION maxpaymar.com. IN CNAME ;ANSWER ;AUTHORITY ;ADDITIONAL

              – Max Paymar
              Jan 6 at 5:44













            • I am not an expert in using Dig, but there are two things, that indicate a problem, that i can see in the response you get from Dig. 1. rcode SERVFAIL - i get rcode NOERROR 2. ;QUESTION maxpaymar.com. IN CNAME ; ANSWER <blank> Whereas what i get is.. ;QUESTION www.mydomain.com. IN CNAME ;ANSWER www.mydomain.com. 3599 IN CNAME d2xxw7xx19mpsi.cloudfront.net.

              – Afshar
              Jan 6 at 7:04



















            • Hi - thanks for your reply. I'm using the "Create Record in Route53" button after creating the certificate, so AWS creates the record for me. I double checked and it's not using .example.com. I tried using dig to troubleshoot and I'm getting this response for querying the CNAME record (and A record for that matter)id 60031 opcode QUERY rcode SERVFAIL flags QR RD RA ;QUESTION maxpaymar.com. IN CNAME ;ANSWER ;AUTHORITY ;ADDITIONAL

              – Max Paymar
              Jan 6 at 5:44













            • I am not an expert in using Dig, but there are two things, that indicate a problem, that i can see in the response you get from Dig. 1. rcode SERVFAIL - i get rcode NOERROR 2. ;QUESTION maxpaymar.com. IN CNAME ; ANSWER <blank> Whereas what i get is.. ;QUESTION www.mydomain.com. IN CNAME ;ANSWER www.mydomain.com. 3599 IN CNAME d2xxw7xx19mpsi.cloudfront.net.

              – Afshar
              Jan 6 at 7:04

















            Hi - thanks for your reply. I'm using the "Create Record in Route53" button after creating the certificate, so AWS creates the record for me. I double checked and it's not using .example.com. I tried using dig to troubleshoot and I'm getting this response for querying the CNAME record (and A record for that matter)id 60031 opcode QUERY rcode SERVFAIL flags QR RD RA ;QUESTION maxpaymar.com. IN CNAME ;ANSWER ;AUTHORITY ;ADDITIONAL

            – Max Paymar
            Jan 6 at 5:44







            Hi - thanks for your reply. I'm using the "Create Record in Route53" button after creating the certificate, so AWS creates the record for me. I double checked and it's not using .example.com. I tried using dig to troubleshoot and I'm getting this response for querying the CNAME record (and A record for that matter)id 60031 opcode QUERY rcode SERVFAIL flags QR RD RA ;QUESTION maxpaymar.com. IN CNAME ;ANSWER ;AUTHORITY ;ADDITIONAL

            – Max Paymar
            Jan 6 at 5:44















            I am not an expert in using Dig, but there are two things, that indicate a problem, that i can see in the response you get from Dig. 1. rcode SERVFAIL - i get rcode NOERROR 2. ;QUESTION maxpaymar.com. IN CNAME ; ANSWER <blank> Whereas what i get is.. ;QUESTION www.mydomain.com. IN CNAME ;ANSWER www.mydomain.com. 3599 IN CNAME d2xxw7xx19mpsi.cloudfront.net.

            – Afshar
            Jan 6 at 7:04





            I am not an expert in using Dig, but there are two things, that indicate a problem, that i can see in the response you get from Dig. 1. rcode SERVFAIL - i get rcode NOERROR 2. ;QUESTION maxpaymar.com. IN CNAME ; ANSWER <blank> Whereas what i get is.. ;QUESTION www.mydomain.com. IN CNAME ;ANSWER www.mydomain.com. 3599 IN CNAME d2xxw7xx19mpsi.cloudfront.net.

            – Afshar
            Jan 6 at 7:04













            0














            When I switched my domain from godaddy to AWS, the Name Server records did not automatically update. I thought they would but I actually had to change them manually from the AWS console.






            share|improve this answer




























              0














              When I switched my domain from godaddy to AWS, the Name Server records did not automatically update. I thought they would but I actually had to change them manually from the AWS console.






              share|improve this answer


























                0












                0








                0







                When I switched my domain from godaddy to AWS, the Name Server records did not automatically update. I thought they would but I actually had to change them manually from the AWS console.






                share|improve this answer













                When I switched my domain from godaddy to AWS, the Name Server records did not automatically update. I thought they would but I actually had to change them manually from the AWS console.







                share|improve this answer












                share|improve this answer



                share|improve this answer










                answered Mar 7 at 16:23









                Max PaymarMax Paymar

                285219




                285219






























                    draft saved

                    draft discarded




















































                    Thanks for contributing an answer to Stack Overflow!


                    • Please be sure to answer the question. Provide details and share your research!

                    But avoid



                    • Asking for help, clarification, or responding to other answers.

                    • Making statements based on opinion; back them up with references or personal experience.


                    To learn more, see our tips on writing great answers.




                    draft saved


                    draft discarded














                    StackExchange.ready(
                    function () {
                    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f54025660%2faws-certificate-request-validation-timeout%23new-answer', 'question_page');
                    }
                    );

                    Post as a guest















                    Required, but never shown





















































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown

































                    Required, but never shown














                    Required, but never shown












                    Required, but never shown







                    Required, but never shown







                    Popular posts from this blog

                    MongoDB - Not Authorized To Execute Command

                    Image
                    .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box; } 0 I have successfully enabled authorization on MongoDB and I have created an account on the admin database and then I created an account for my database called test. The following connection string to connect to my test database works successfully: mongo --host 192.168.17.52 --port 27017 -u user1 -p password --authenticationDatabase test Only problem I have now is, I cannot execute commands such as: show dbs. I get the following error when I try to do so: "errmsg" : "not authorized on admin to execute command { listDatabases: 1.0, lsid: { id: UUID("a1d5bc0d-bc58-485e-b232-270758a89455") }, $db: "admin...
                    Read more

                    How to fix TextFormField cause rebuild widget in Flutter

                    Image
                    .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box; } 0 I've got the same issue at #9280. I tried all solutions from that topic with/without GlobalKey for Scaffold and Form but the problem wasn't fixed. I tried to build a authentication form with login and signup. But the keyboard doesn't show when I tap the TextFormField at the first time. Then I try to input some letter from physical keyboard, the widget is rebuilt. Like this: login screen Nothing to be log when I run flutter run --verbose, so I logged manually. Every tapping on field, the widget called dispose -> init -> build. [√] Flutter (Channel beta, v1.0.0, on Microsoft Windows [Version 10.0.17763.195], ...
                    Read more

                    Npm cannot find a required file even through it is in the searched directory

                    Image
                    up vote 0 down vote favorite I got that error: users-Air:pdfuploader user$ npm run start client@0.1.0 start /Users/user/Documents/pdfuploader react-scripts start Could not find a required file. Name: index.html Searched in: /Users/user/Documents/pdfuploader/public npm ERR! code ELIFECYCLE npm ERR! errno 1 npm ERR! client@0.1.0 start: `react-scripts start` npm ERR! Exit status 1 npm ERR! npm ERR! Failed at the client@0.1.0 start script. npm ERR! This is probably not a problem with npm. There is likely additional logging output above. npm ERR! A complete log of this run can be found in: npm ERR! /Users/user/.npm/_logs/2018-11-19T10_19_14_555Z-debug.log users-Air:pdfuploader user$ And the file is in /Users/user/Documents/pdfuploader/public as you can see in my github repository: https://github.c...
                    Read more