Verify SSL Certificate
Last updated
Last updated
You'd need to verify the SSL certificate if:
You configured the CLI to create the SSL certificate for you by settingcreateSSLCert to true, which is the default setting, AND
You configured the CLI to NOT manage the DNS for your domain by setting createHostedZoneForDomain to false in the config.
In order to verify the certificate, you'd need to create some DNS records with your DNS provider. Usually, the DNS is provided by your domain-provider, like namecheap.com, or godaddy.com.
The info to create the DNS records is displayed as logs at the end of the apply command run. If you no longer have access to the logs, you can re-run the CLI apply command and it will display the necessary records again.
This info is highlighted in a red rectangle in the image below. In the example output below, you'd need to create two records, each of type CNAME. The first record has the name _ab6b0a14ace9fbb777a5fbcfdfe89478.demo.notops.io. and value _87568b69a748b78f580bc11eeba71cce.rgzvdbzpvl.acm-validations.aws.
Both records would need to be created with your DNS provider.
You'd be asked to set Time-To-Live or TTL for the records you create. Most providers will provide default values. If a default value is not set, use 300 seconds as a value. This is a good enough TTL for such DNS records. If there are any other fields, you can usually keep them empty or unchanged from default values (if defaults are provided)
Follow the steps from this article to create CNAME records from namecheap documentation.
Follow the steps from this guide from porkbun documentation.
Please refer to this guide for adding CNAME records from GoDaddy documentation.
If your provider is not mentioned explicitly here, you can usually find the settings by logging into the provider's portal, and looking for DNS settings. Most providers make it very easy to alter these settings.
Additionally, searching for "Create DNS records for <your provider name here>" should find the help you are looking for.
notops apply command