It is now possible to add the following DNS records in the one.com Control Panel.
Go to the Advanced settings tile, here you click DNS Settings. Under DNS records you can see all available DNS records in the different tabs.
CAA (Certification Authority Authorization)
CAA-records allow you to specify which Certification Authorities (CAs) are allowed to issue certificates for your domain or subdomain. Only the CAs listed in the record(s) are authorised to issue certificates for that hostname.
You need to enter the following details:
- Hostname: leave it empty to point the domain, or enter a subdomain.
- Value: of the CA - certification authority. Which consists of three parts, separated by spaces.
- TTL: optional. If you leave it empty, it will use the default time of 3600 seconds.
Click Create record to save your settings.
Example: In the screenshot below we have added a certificate from letsencrypt.org for www.one-example.com. The TTL is left empty, meaning it is set to 3600, which means the server will cache this setting for one hour.
DS (Delegation Signer)
DS-records are used in connection with DNSSEC and allow you to delegate trust to another signing key used in a DNS subzone. The actual subzone delegation is done with NS records.
You need to enter the following details:
- Hostname: this should always and only be the name of the subdomain.
- Value: consists of four parts, separated by spaces.
- TTL: optional. If you leave it empty, it will use the default time of 3600 seconds.
Click Create record to save your settings.
Example: In the screenshot below we added the signing key for the subdomain blog.one-example.com. The TTL is left empty, meaning it is set to 3600, which means the server will cache this setting for one hour.
NS (Name Server for subdomains)
NS-records allow you to configure individual subdomains with different name servers than the domain itself.
You need to enter the following details:
- Hostname: this should always and only be the name of the subdomain.
- Value: the nameserver you wish to use.
- TTL: optional. If you leave it empty, it will use the default time of 3600 seconds.
Click Create record to save your settings.
Example: In the screenshot below we allow the nameserver of example.com to configure for blog.one-example.com. The TTL is left empty, meaning it is set to 3600, which means the server will cache this setting for one hour.
Related articles: