I am having some serious issues on my Website regarding CAA Records. Just wanted to see if anyone knew anything about this.
I have contacted Cloudflare already as that is where I manage all my DNS Records from. This is what I said to them:
“I am trying to get a new SSL Cert from zerossl.com as PHP does not seem to like Self-Signed Certs, but when I click Verify, it keep getting the error “Invalid CAA Records”. Not sure what has caused this as I have never touched CAA Records before. I tried adding a CAA Record but that does not seem to do anything. This seriously affects my Core web APIs completely stopping them from working.”
That sums up my problem pretty much. If anyone knows anything about this I would be really grateful for the support
We don’t publish any CAA records on our nameservers. If a domain does not have CAA records, it means that any SSL provider is allowed to issue SSL certificates for any domains we provide.
So I don’t know what kind of CAA records ZeroSSL sees, because they should not see any and that should be all.
Also, if you’re using Cloudflare’s nameservers, this is an issue completely outside of InfinityFree. If a third party tool says that the DNS records at a third party provider are wrong, then that means the issue is probably between those providers.
And finally, I can’t for the live of me figure out why you would want to use a service like ZeroSSL. We provide free SSL certificates for an unlimited number of domains with free unlimited renewals. And, unlike with third party tools, we can actually help you getting your InfinityFree SSL certificate set up with a domain hosted on InfinityFree.
@Admin - This is what happens with the SSL Certs on the InfinityFree Site.
These two records have been on the domain for over 24 hours. I know from experience that Cloudflare adds records almost instantly anyway.
I know I keep posting here, but its easier than creating a new topic
Is this error because of the Cert on the running the file_get_contents or the domain in the url of the file_get_contents?
Yes I did, but I figured its the other end, the url inside the file_get_contents. Anyway I figured out a way to stop it verifying the SSL Cert on the remote site.