Validating an SSL/TLS certificate for FlashEdge distribution
Validation of the SSL/TLS FlashEdge certificate is automatic, but you have 72 hours until it gets to a failed status and you have to create a new certificate. For validation, you have to have administrator access to DNS (e.g. GoDaddy, Amazon Route 53, etc.)
You will first need to create a FlashEdge certificate to be able to validate it and as a result, you should have a certificate that is pending validation.
CNAME record values for certificate validation
After you’ve created a certificate in FlashEdge distribution, you should be able to see the CNAME values that you’ll need for the validation.
Sign in to the FlashEdge.
Choose the distribution for which you want to validate a certificate.
Choose the Https tab.
You should see the values that you’ll need for the validation (e.g. _xxxxxxxxxxxxxxxxxxxxxxxxxxx.example.com. for CNAME and _xxxxxxxxxxxxxxxxxxxxxxxxxxx.acm-validations.aws. as a value of the CNAME record).
Use these values in the next steps in your DNS.
Creating a CNAME record in your DNS
To validate a FlashEdge certificate, you'll need to create a CNAME record in your DNS (Domain Name System). A CNAME (Canonical Name) record is used to alias a domain to another domain.
While specific steps may vary depending on your DNS provider, we've prepared a general guide to help you through the process. Alternatively, you can use the links that describe this for the best known DNS services.
Here's a step-by-step overview of what you need to do:
Log into your DNS: Access your DNS provider's dashboard using your credentials. This is usually where you manage your domain's settings.
Locate DNS Management: Look for an option related to "DNS Management", "DNS Settings", or "Domain Configuration". The exact wording might differ, but you're essentially searching for the area where you can edit DNS records.
Identify the domain: Choose the domain or subdomain that you want to set up with SSL/TLS and a CNAME record. This is typically done by selecting from a list of domains you own.
Add a CNAME record: There should be an option to add a new DNS record. Select "CNAME" as the type of record you want to create.
Complete the CNAME record fields:
Name/Alias: Enter the subdomain you want to link:_xxxxxxxxxxxxxxxxxxxxxxxxxxx.example.com. This will usually only be the specific code before the .example.com.
Value/Points to: Provide the target domain. This will usually be the whole text :_xxxxxxxxxxxxxxxxxxxxxxxxxxx.acm-validations.aws
Save Changes: Once you've filled in the required fields, save the changes. This might involve clicking a "Save" or "Update" button.
Propagation Time: Keep in mind that DNS changes might take some time to propagate across the Internet. Changes could be live within minutes or may take up to 48 hours, depending on various factors.
Please note that the instructions provided here are general guidelines. Your DNS provider's interface and terminologies might differ. If you're unsure about any step or encounter difficulties, we recommend reaching out to your DNS provider's support or consulting their documentation for specific instructions tailored to their platform.
Links for documentation of most used DNS providers:
Check validation status
A “SUCCESS” status confirms that you have validated your certificate with the CNAME records that you added to your domains. Your certificate is valid for 12 months from the date on which you validated them, after which time the FlashEdge certificate manager attempts to automatically re-validate them. We recommend that you don't delete the CNAME record because they are required when your certificate is re-validated.
A “FAILED” status can appear after 72 hours. If this happens, try to delete the certificate and start again. If you use the same domain name, the values of the validation CNAME will probably not change.
Last updated