Open fflaten opened 8 months ago
Thanks for the link!
We're not doing much MSDNS development lately but we'd gladly accept a patch.
In the meanwhile, you could work around this by inserting the record manually and using the NO_PURGE
or IGNORE()
feature. Not sure if that situation has been tested (unknown record types aren't handled very well right now).
Thanks for the ignore-suggestion. Will try it out soon. Just started looking into migration 🙂
Sadly Add-DnsServerResourceRecord doesn't support CAA records. This is going to be more difficult to implement than expected. i.e. using -Type 257 -rdata HEXCODE
Some notes:
Describe the solution you'd like Being able to configure CAA records using the Microsoft DNS Server provider.
Describe alternatives you've considered N/A
Additional context CAA are supported with Windows DNS Server 2016+ using unknown record type 257. See https://www.entrust.com/knowledgebase/ssl/how-to-add-a-certification-authority-authorization-record-caa-in-windows-server-2016