The issue description
I need to create a cert for a few domains. One of them is tsl.cogentthinking.com.au.
On the ACME validation, I got the CAA record for cogentthinking.com.au prevents issuance problem.
I checked the CAA records. For tsl.cogentthinking.com.au it is empty and for cogentthinking.com.au it include cogentthinking.com.au. 3600 CAA 0 issue "letsencrypt.com"
The full CAA record is here https://www.nslookup.io/domains/cogentthinking.com.au/dns-records/caa/
As I understand the CAA record, the cert issue should be allowed.
Please, advise =)
My domain is: tsl.cogentthinking.com.au.
Initially, I ran this cerbot command:
sudo certbot certonly --manual --no-eff-email --agree-tos -m sorosand@gmail.com -d tsl.thescreeninglab.com -d www.tsl.thescreenin glab.com -d tsl.cogentthinking.com.au -d www.tsl.cogentthinking.com.au
After the ACME validation It produced this output:
Certbot failed to authenticate some domains (authenticator: manual). The Certificate Authority reported these problems:
Domain: tsl.cogentthinking.com.au
Type: caa
Detail: CAA record for cogentthinking.com.au prevents issuance
The version of my client is : certbot 2.6.0
