Not able to add CCA DNS record for SSL CertAuthrity

Discussion in 'Server Operation' started by [email protected], Jun 12, 2020.

  1. Hi
    I have trouble renewing certificate from ssl.comX used for Windows services since SSL.comX can't verify certificate with out CCA record and SSL.comX is not available in Certificate Authority drop down.
    Is there an quick fix for this ?

    Regards Stefan B.
  2. elmacus

    elmacus Active Member

    If you meant in ISPconfig 3, or did you mean in Windows DNS-server ?
    In my ISPconfig 3.1.15 there is support for DNS CAA, and you can add missing in /system/gui config/dns caa
    Last edited: Jun 12, 2020
  3. DNS is ISPconfig, I firmly believe from previous experience that Linux based Opensource solution is better for hard internet facing services, an keep Windows as much as possible behind UX based protection ;)
    Is the format of such addition self explanatory ?
  4. elmacus

    elmacus Active Member

    So what version of ISPconfig do you have ? You should upgrade to latest.
  5. I have the latest
  6. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    Add the CA to the table "dns_ssl_ca" in the database. (In PHPMyAdmin: Select one of the existing CA's, click copy, change ca_name to "SSL Corp" and ca_issue to ""). When you reopen the CAA record form, it will appear. Perhaps we could add this CA for all users to 3.1.16.
  7. In database -> dbispconfig table dns_ssl_ca copying other in CA to newline and changing ca_name to and ca_issue to worked and solved the problem.
    Thanks for the help.
    Th0m likes this.
  8. Fernando Azevedo

    Fernando Azevedo New Member

    Can I suggest that an "Add" button is added in the ISPConfig (fantastic) interface to allow addition of new entities without having to hatch directly in the database?
  9. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    We could do that, but there aren't a lot of providers so adding them to a next release should be sufficient.
    till likes this.

Share This Page