Cannot verify custom domain for Azure Static Web App

Maciej Przybecki 1 Reputation point
2022-11-18T11:56:12.623+00:00

I'm trying to add custom domain to my Azure Static Web App.
I added 'www.mobitum.com' as a domain and selected TXT method of verification.
I created TXT record in my zone:
www.mobitum.com 300 TXT <my_generated_code>

The verification process is pending since few hours.

I already tried CNAME method of verifiction with no success:
261934-image.png

After some time finally got it but with another error:
261828-image.png

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,401 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Maciej Przybecki 1 Reputation point
    2022-11-18T12:10:51.05+00:00

    Will answer myself. You need to:

    1. Configure CNAME record with azure unique address
    2. Allow digicert to issue certificate by adding CAA record for top domain (@) with '0 issue "digicert.com"' value
    0 comments No comments

  2. Roderick Bant 2,051 Reputation points
    2022-11-18T12:14:09.547+00:00

    The service is trying to create a TLS certificate for your static website. However DNS for your domain seems to have a CAA record specifying which certificate authorities may issue certificates for your domain. And digicert, the CA used by the service, is not authorized in your CAA DNS record.

    See this for more information on CAA records.

    0 comments No comments