I am trying to request a certificate for one of the domains (bnymellon.com) owned by the organization I am working for.
I don't see a CAA record or policy anywhere on their domain.
I am utilizing the letsencrypt client on Centos via “letsencrypt certonly”.
In the logfile appears the following Error message:
"detail": "Error creating new order :: Cannot issue for "talentcommunity.bnymellon.com": The ACME server refuses to issue a certificate for this domain name, because it is forbidden by policy",
I would like to ask if it is possible to change the policy so that I am allowed to request certificates for these subdomains? I'm guessing this might be policy because of this Bany orgnaization.
Thank you very much!