In this method, ​​Akamai​ generates a CNAME record that you copy to your DNS to automatically handle domain validation challenges and certificate renewal. You can use the same CNAME value to validate a default certificate and to prove domain ownership to ​​Akamai​. The DNS CNAME method is recommended in most cases.

Use this method when:

• You have direct control over your DNS records.
• You want to validate an exact HOST, a WILDCARD, or a DOMAIN.
• You are using a Default DV certificate, which lets you use a DNS CNAME record for both the certificate and domain validation.

Don't use this method when:

• You don’t have control over your DNS records.
• You are using multiple CDNs.
• You are not using a Default DV certificate.

How to

To validate a domain using DNS CNAME record, first submit your domain for validation in Domain Ownership Manager and then update your DNS configuration.

1. Add a domain to Domain Ownership Manager

1. From the ​​Control Center​ menu, select Domain Ownership Manager.
2. Click + Validate a domain.
3. In the Validate domain window:
   1. Enter the domain name. You can enter more than one name to validate more domains.
      • Domain names can contain letters (a-z), numbers (0-9), and hyphens (-).
      • You can use hyphens, but not at the beginning or end of the domain name.
      • Spaces or special characters aren't supported.
      • The maximum length of each label is 63 characters, and a full domain name can have a maximum of 253 characters.
   2. Select one of the validation scopes:
      • HOST. Use for exact domains. For example, blog.example.com.
      • WILDCARD. Use for first-level subdomains. For example, when you enter example.com, blog.example.com and 123.example.com are validated, but not xyz.blog.example.com or top level example.com.
      • DOMAIN. Use for exact domains and all subdomains. For example, when you enter example.com, then blog.example.com, 123.blog.example.com, and x.123.blog.example.com are validated.
4. Click Submit.

You can see the newly added domain in the Pending tab. The initial status is Request accepted.

2. Update your DNS configuration

1. View the domain details.
2. In Domain validation details, navigate to the CNAME record tab and copy the challenge token values for Name and Target.
3. In your DNS provider:
   1. Add a CNAME record: \_acme-challenge.domainName. For a domain called example.com, the record should be \_acme-challenge.example.com.
   2. Paste the value you copied from the Domain Ownership Manager's UI as the target.

👍

After you update your DNS records or token, you can either wait for the next background job or request an instant validation. The validation process starts right away or after a short delay, depending on the number of requests in the queue.

Check the domain status to monitor the validation progress. After it completes, your domain status changes to Validated.

Instantly validate a domain

Once you’ve updated your DNS, you can request to instantly validate your domain. This skips the standard schedule of Domain Ownership Manager background jobs, and validates the domain straight away.

1. In the Domain Ownership Manager, select the domain you want to validate and click the action menu icon.
2. Select Validate Now.

3. In the pop-up window, select CNAME as the preferred validation method.
4. Click Validate Now.

The domain validation starts immediately.