Add a CAA record
A CAA (Certification Authority Authorization) record is a DNS record used to specify which certificate authorities (CAs) are allowed to issue SSL certificates for a domain. When issuing a certificate, all publicly trusted CAs are required to check and respect CAA records. CAA records are advanced DNS settings you can add at any time.
- Log in to your GoDaddy Domain Control Center. (Need help logging in? Find your username or password.)
- Select your domain to access the Domain Settings page.
- Under Additional Settings, select Manage DNS.
- Select Add under the records table.
- Under Type, select CAA.
- Enter the details for your CAA record:
- Name: The domain or subdomain for the CAA record. Type @ to point the record directly to your domain name.
- Flags: An unsigned integer between 0–255.
- Tag: An ASCII string that represents the identifier of the property represented by the record. This is typically entered as issue, issuewild or iodef, depending on your specific requirements.
- Value: The value associated with the chosen property tag.
- TTL: How long the server should cache information. The default setting is 1 hour.
- Select Save to save your new CAA record.
Please allow up to 48 hours for your changes to take full effect globally.
- The lack of any CAA records authorizes normal unrestricted certificate issuance, and the presence of a single blank issue tag prevents all certificate issuance.
- Make changes to your CAA record at any time.