Will answer myself. You need to:
- Configure CNAME record with azure unique address
- Allow digicert to issue certificate by adding CAA record for top domain (@) with '0 issue "digicert.com"' value
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I'm trying to add custom domain to my Azure Static Web App.
I added 'www.mobitum.com' as a domain and selected TXT method of verification.
I created TXT record in my zone:
www.mobitum.com 300 TXT <my_generated_code>
The verification process is pending since few hours.
I already tried CNAME method of verifiction with no success:
After some time finally got it but with another error:
Will answer myself. You need to:
The service is trying to create a TLS certificate for your static website. However DNS for your domain seems to have a CAA record specifying which certificate authorities may issue certificates for your domain. And digicert, the CA used by the service, is not authorized in your CAA DNS record.
See this for more information on CAA records.