AWS Certificate Manager 中处于 Pending 状态的证书 [英] Certificate in Pending state in AWS Certificate Manager
问题描述
我们的项目部署在 Elastic Beanstalk 上,我想在 HTTPs 上运行它.我在 AWS Certificate Manager 上创建了我的证书并选择了 DNS 验证选项.我在我的 Godaddy DNS 记录中添加了提供的数据.以下是我的示例数据
Our project is deployed on Elastic Beanstalk and I want to run this on HTTPs. I created my certificate on AWS Certificate Manager and choose DNS verification option. I added provided data in my Godaddy DNS records. Below is my sample data
Domain Name | Record Name | Record Type | Record Value
example.com | _8046ecb910c52234234234234232ecae.example.com. | CNAME | _81b05686qweerttcxsaxasdadas5a566.tljzshvwok.acm-validations.aws.
*.example.com | _8046ecb910c52234234234234232ecae.example.com. | CNAME | _81b05686qweerttcxsaxasdadas5a566.tljzshvwok.acm-validations.aws.
AWS 为我提供了 example.com 和 *.example.com 的两条记录,但两条记录都相同.所以我在 Godaddy DNS 条目中添加了一个 CNAME 记录.我等了三天,我的证书仍然处于待处理状态,最终过期了.我创建了一个新的,我已经等了 24 小时,它仍然处于挂起状态.我不能使用电子邮件验证方法,因为我不是该域的所有者.
AWS has given my two records for example.com and *.example.com but both records are same. So I added one CNAME record in Godaddy DNS entries. I waited for three days and my certificate was still in pending state which in the end expired. I created a new one and I have been waiting for 24 hours and it is still in pending state. I cannot use Email verification method as I am not owner of this domain.
推荐答案
一个明显常见的错误是将整个主机名粘贴到一个不需要 FQDN 的框中,从而在 DNS 中创建一个实际上看起来像这样的记录(尽管您可能不会在屏幕上以这种方式观察它):
An apparently common error is to paste the entire hostname into a box that does not expect an FQDN, thus creating a record that actually looks like this in DNS (though you may not observe it this way on the screen):
_8046ecb910c52234234234234232ecae.example.com.example.com
对于主机名",只需在创建记录时使用 _8046ecb910c52234234234234232ecae.
For the "hostname," just use _8046ecb910c52234234234234232ecae when creating the record.
创建后,使用 dig 或 nslookup 验证它是否按预期解析.
After creating it, use dig or nslookup to verify that it resolves as expected.
这篇关于AWS Certificate Manager 中处于 Pending 状态的证书的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
