From a16cad8e86382f2087307096b80a420069a321c9 Mon Sep 17 00:00:00 2001 From: martgras Date: Sun, 25 Mar 2018 13:37:39 +0200 Subject: [PATCH] Updated DNS alias mode (markdown) --- DNS-alias-mode.md | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) diff --git a/DNS-alias-mode.md b/DNS-alias-mode.md index 0ac5a7e..696851f 100644 --- a/DNS-alias-mode.md +++ b/DNS-alias-mode.md @@ -151,3 +151,19 @@ Then issue cert like: acme.sh --issue -d a.com --domain-alias myalias.B.com --dns dns_cf ``` + +**Note:** Don't use the domain name only for --domain-alias. +```sh +acme.sh --issue -d a.com --domain-alias B.com --dns dns_cf +``` +This would require that a TXT record is created at the domain apex i.e. @ TXT "myvalidationcode". Since adding a value at the apex of a domain requires a different syntax for adding the DNS records it cannot be used in this form. + +If you really want to create the validation records at the domain apex then depending on the implementation of the dns api you have to use + +```sh +acme.sh --issue -d a.com --domain-alias @.B.com --dns dns_cf +``` +or +```sh +acme.sh --issue -d a.com --domain-alias .B.com --dns dns_cf +```