You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/frontdoor/domain.md
+7-3Lines changed: 7 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -57,6 +57,8 @@ For example, suppose you want to use the custom subdomain `myapplication.contoso
57
57
| Record value |*use the value provided by Azure Front Door*|
58
58
| Time to live (TTL) | 1 hour |
59
59
60
+
After your domain has been validated successfully, you can safely delete the TXT record from your DNS server.
61
+
60
62
For more information on adding a DNS TXT record for a custom domain, see [Configure a custom domain on Azure Front Door using the Azure portal](standard-premium/how-to-add-custom-domain.md).
61
63
62
64
### Domain validation states
@@ -175,10 +177,12 @@ However, Azure Front Door won't automatically rotate certificates in the followi
175
177
* The custom domain uses an A record. We recommend you always use a CNAME record to point to Azure Front Door.
176
178
* The custom domain is an [apex domain](apex-domain.md) and uses CNAME flattening.
177
179
178
-
If one of the scenarios above applies to your custom domain, then 45 days before the managed certificate expires, the domain validation state becomes one of the following states:
180
+
If one of the scenarios above applies to your custom domain, then 45 days before the managed certificate expires, the domain validation state becomes *Pending Revalidation*. The *Pending Revalidation* state indicates that you need to create a new DNS TXT record to revalidate your domain ownership.
181
+
182
+
> [!NOTE]
183
+
> DNS TXT records expire after seven days. If you previously added a domain validation TXT record to your DNS server, you need to replace it with a new TXT record. Ensure you use the new value, otherwise the domain validation process will fail.
179
184
180
-
-*Pending Revalidation*, which indicates that you need to create a new DNS TXT record to revalidate your domain ownership.
181
-
-*Rejected*, which indicates that the certificate authority has rejected the request for reissuing a managed certificate.
185
+
If your domain can't be validated, the domain validastion state becomes *Rejected*. This state indicates that the certificate authority has rejected the request for reissuing a managed certificate.
182
186
183
187
For more information on the domain validation states, see [Domain validation states](#domain-validation-states).
0 commit comments