I am trying to establish a certificate that will house three wild/root domains. I have created a domain authorization for each domain using DNS challenge, and the method being AWS Route53.
The first problem is one domain which I know if in Route53 is not displayed in the DNS Zone id drop down, and I have had to provide the zone id manually. Not sure why this listing is limited, but it does not display all the host zones we have in AWS.
The second problem is when I test the configuration after creating the three-domain authorizations for each domain. The test immediately fails and states that the http-01 authorization cannot be used for wildcard domains and use DNS validation instead. Funny as it is configured for dns-01 validation to begin with. It appears when when I have more than one domain authorization configured, it always fails as the application uses the wrong validation method. When I adjust it for one domain and one authorization only, it does perform the dns-01 validation, and the test is successful.
I have even removed the domain that was not displayed in the DNS Zone id and entered it manually thinking this may have caused the issue, and still the test fails.
Any help as to how I can overcome this setup issue would be greatly appreciated.