--domain-alias not working, or instructions not clear #6814
Description
I'm trying to setup an issue and renew for a domain ( wildcard ) ( let's say example.com ) by delegating the acmedns to another domain ( let's say example.net ) wich already has his acme.sh script for his own certificates thus I have to use a subdomain to achieve this ( to not broke the working one ).
I have created a CNAME in example.com:
_acme-challenge.example CNAME authfr.example.net
In example.net I have created an A record:
authfr.example.net A xx.xx.xx.xx
and an NS record:
authfr.example.net NS authfr.example.net
Then, on the server xx.xx.xx.xx I have setup the acmedns with the same two records:
nsname = "authfr.example.net" nsadmin = "pigi.example.com" records = [ "authfr.example.net. A xx.xx.xx.xx", "authfr.example.net. NS authfr.example.net.", ]
Then I launch:
acme.sh --issue --server 'letsencrypt_test' -d '*.example.com' --domain-alias authfr.example.net --dns dns_acmedns -k 2048 --debug 2
which starts doing his things and it ask me to add:
# Create _acme-challenge.authfr.example.net CNAME c76432a1-02b2-4ee1-ad61-08f841bf1d9a.auth.acme-dns.io DNS entry #
which I do in example.net DNS, but it would not work, obviously as the authoritative server for authfr.example.net is on xx.xx.xx.xx server as instructed before, on acmedns server.
In the acmedns logs I see:
DEBU[4687] Answering question for domain domain=_acme-challenge.authfr.example.net. qtype=CNAME rcode=NOERROR
DEBU[4687] Answering question for domain domain=_acme-challenge.authfr.example.net. qtype=CNAME rcode=NOERROR
DEBU[4701] Answering question for domain domain=_ACme-chALLeNGE.aUthfr.EXample.neT. qtype=CNAME rcode=NOERROR
DEBU[4701] Answering question for domain domain=_acme-challenge.authfr.example.net. qtype=CNAME rcode=NOERROR
which is expected as I haven't add those records in acmedns ( I can't find a way ).
Is this a problem with domain-alias or I'm not understanding correclty ?