I have a setup where I have a top level domain hosted and the DNS is done through Route53. The SSL certificate is done through AWS certificate manager and works fine for the top level domain. It is set up as "*.mysite.com".
I registered a subdomain with Route53 and it points to the correct ELB setup but the SSL certificate is not working for the site and therefore my resources are not loading properly at all. I went as far as to register a second certificate for the subdomain but that too does not seem to work.
How can I accomplish this?
Best Answer
As mentioned in the aws certificate manager document (https://aws.amazon.com/certificate-manager/faqs/).
ACM removes the wildcard label (*) when generating CNAME records for wildcard names. As a result, the CNAME record generated by ACM for a wildcard name (such as *.example.com) is the same record returned for the domain name without the wildcard label (example.com).
You cannot validate all subdomains of a domain using one CNAME record because each domain name, including host names and subdomain names, must be validated separately, each with a unique CNAME record.