Manage CAA DNS Records

    Hi all


    I got a proposition in order to deal with CAA records.
    I'd to deal with this when I wanted to get a letsencrypt SSL Certificate since my domains are managed on the iMSCP server I installed.


    I found that modifying the Bind template according to Bind version is functionnal.
    Mine is installed on Debian Stretch so Bind is in version 9.10.xxx.


    So just use this command :


    vim /etc/imscp/bind/parts/db.tpl


    And then in the "GLUE" part of the template, add these lines


    Code
    1. ; dmn CAA entries BEGIN
    2. {DOMAIN_NAME}. CAA 128 issue "letsencrypt.org"
    3. {DOMAIN_NAME}. CAA 128 issue "comodoca.com"
    4. {DOMAIN_NAME}. CAA 128 issue "digicert.com"
    5. ; dmn CAA entries ENDING


    Save (Esc + : + x)


    On the i-MSCP Control Panel, just edit the domain parameters (as domain owner of course) and click "update"


    You're on :thumbsup: !


    The files generated for bind are compliant with "letsencrypt" and some others SSL Vendors.


    My only question is : What append when i-MSCP is updated ?


    Thanks for reading and commenting.

    https://youtrack.i-mscp.net/issue/IP-1703

    badge.php?id=1239063037&bid=2518&key=1747635596&format=png&z=547451206

    SSH key for online support

    Hi @Nuxwin
    I already view this link, but sorry I'm not used to "tracker system".


    What's the goal of your answer ?
    I think I understand that it's not possible to add this feature for the moment, because iMSCP is intended to work with Debian Jessie, but the Bind package is too old to deal withe new format of the CAA record.
    If it's that, why not allow this feature only If the bind version is OK ?


    Thanks for your reply.