CAA policy records

Overview

This only applies if your Nameservers are NOT hosted at DreamHost.

Certification Authority Authorization (CAA) is an Internet security policy that prevents malicious users from creating false SSL/TLS certificates. A CAA record can be created by a website owner to specify which Certificate Authorities (CAs) are permitted to issue certificates. The following are records you should add at your DNS hosting company. The CAA record you add depends on if you're purchasing a Sectigo, or Le'ts Encrypt certificate from DreamHost.

Add these if you're purchasing Sectigo SSL from DreamHost

  • comodoca.com
  • usertrust.com
  • trust-provider.com
  • sectigo.com

Add the following if you're purchasing a Let's Encrypt SSL from DreamHost

Did this article answer your questions?

Article last updated PST.