By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Issue with certificate pending registration

0

Hi, I want to host a web with cloudfront and route53. For this I need create an ACM My issue is that the acm is "pending validation"

I have a domain called mytick.co.il on my acm I called www.myticl.co.il and added domain to mytick.co.il

On my provider I put the 4 addresses I got on NS When I do

➜ il-central-1 git:(adding-s3-bucket-for-pics) ✗ dig www.mytick.co.il

; <<>> DiG 9.10.6 <<>> www.mytick.co.il ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60256 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION: ;www.mytick.co.il. IN A

;; AUTHORITY SECTION: mytick.co.il. 900 IN SOA ns-10.awsdns-01.com. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400

;; Query time: 194 msec ;; SERVER: 192.168.0.1#53(192.168.0.1) ;; WHEN: Fri Sep 29 11:06:27 IDT 2023 ;; MSG SIZE rcvd: 114

When I do

➜ il-central-1 git:(adding-s3-bucket-for-pics) ✗ dig mytick.co.il

; <<>> DiG 9.10.6 <<>> mytick.co.il ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28056 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION: ;mytick.co.il. IN A

;; AUTHORITY SECTION: mytick.co.il. 900 IN SOA ns-10.awsdns-01.com. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400

;; Query time: 89 msec ;; SERVER: 192.168.0.1#53(192.168.0.1) ;; WHEN: Fri Sep 29 11:06:42

I added the acm with "create record in route 53" but it's on pending validation.

How I can solve it ?

Topics
Networking & Content DeliverySecurity, Identity, & Compliance
Tags
Amazon Route 53AWS Certificate Manager
Language
English
Adi
asked 8 months ago174 views
2 Answers
0

It seems you haven’t created a root domain alias in route53 for your domain. This is why you’re receiving no record found. Where does www point too? Just create an alias record in the root for your domain pointing to the same destination as www

However for acm can you confirm you created the CNAME records in your zone which ACM supply. These are the CNAME record used to validate your certificate

profile picture
EXPERT
Gary Mclean
answered 8 months ago
0

Hi,

To complete validation, you must have the required records in your hosted zone. You can make them automatically by clicking the button or editing your Route53 host zone manually.

Enter image description here

profile picture
EXPERT
Dmytro Sirant
answered 8 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content