question

NuriEngin-4839 avatar image
1 Vote"
NuriEngin-4839 asked EvanMulawski commented

Can not pass the 'Validate the custom domain' step during add a new 'Domain' to Azure Front Door Standart/Premium (Preview)

I've followed the 'Quickstart: Create an Azure Front Door Standard/Premium profile - Azure portal' document (1) and created my Front Door source with 'Premium' tier. The 'Caching: Ignore Query String' and 'Private Links' features are also enabled. I've connected the Front Door to the existing Azure web-app service and the default domain-host with '.z01.azurefd.net' works totally fine.

The problem shows up during validating a custom domain with an external DNS provider. I've followed up on the 'Create a custom domain on Azure Front Door Standard/Premium SKU (Preview) using the Azure portal' document (2). I've added the domain and now struggling with validation process. Followed document and generated 'TXT' record to added my DNS provider (3) and generated required TXT record. The 'Vaildate the custom domain' window generates the 'Record name' with underscore like '_dnsauth' but says 'If you're using another DNS provider, manually create a new TXT record of name dnsauth.<your_subdomain> with the record value as shown on the page.'

I've set the both 'dnsauth.<my_subdomain>' and '_dnsauth.<my_subdomain>' but still whenever I click on Refresh Status button, there is no any action. (4)

What might be missing there with this setup?

Thanks for help.


(1) https://docs.microsoft.com/en-us/azure/frontdoor/standard-premium/create-front-door-portal
(2) https://docs.microsoft.com/en-us/azure/frontdoor/standard-premium/how-to-add-custom-domain
(3) We are working with Digital Ocean
(4) A screenshot from the Portal Azure @ https://nimb.ws/xkDSRe

azure-front-door
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ChaitanyaNaykodiMSFT-9638 avatar image
0 Votes"
ChaitanyaNaykodiMSFT-9638 answered EvanMulawski commented

Hello @NuriEngin-4839, Thank you for the detailed question here.

Can you try doing a nslookup for you TXT record and see if it is propagating and also validate that you have entered the correct record value in azure portal. You an try this command nslookup -type=TXT dnsauth.<your_subdomain>. If TXT record does not show up please check with your DNS service provider. Alternatively you can also this website to lookup your TXT record.

If TXT record is propagating and record value is correct. I will suggest that you create a support request for this issue as we will have to look at the backend logs to find out why exactly the custom domain validation is stuck. If you do not have a support plan please refer to the private message I will make here shortly.

Note : Azure Front Door Standard/Premium (Preview) is currently not recommended for production environments.

Please let me know if there are any concerns, Thank you!

· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @ChaitanyaNaykodiMSFT-9638 I've followed your steps.

Now I can see the nslookup query response on the terminal but still Azure site says: <<
Please refresh the status after the above verification challenge is completed. >>. It is almost one hour but no validation succeeds.

> nslookup -type=TXT _dnsauth.seAAAAAAAty.com
< Server: 127.11.11.11
   Address: 12711.11.11#11
  Non-authoritative answer:
  _dnsauth.seAAAAAAAty.com text = "9baaaaaaaaaaaaaaaaaaah"
 Authoritative answers can be found from:


Now I'll follow your offer to generate a Support ticket but meanwhile, i would like to ask;
I've not set up any CNAME value yet on my DNS provider. So far the doc took me only to the TXT record. Should I also set up the CNAME?

Thank you.

0 Votes 0 ·

Hello @NuriEngin-4839, AFAIK Azure Front Door Standard/Premium (Preview) uses TXT records for custom domain validation and it does not use CNAME records for validation. Although in the documentation (Step 3) after the validation is done it does mention about adding CNAME records.
Please let me know if there are any additional concerns. Thank you!


0 Votes 0 ·
EvanMulawski avatar image EvanMulawski ChaitanyaNaykodiMSFT-9638 ·

I am having this issue as well. The TXT record has propagated but the status is stuck on Pending.

0 Votes 0 ·
KalpeshPatel-3003 avatar image
0 Votes"
KalpeshPatel-3003 answered

I am also having the same issue. I created TXT record in DNS and I get correct TXT record value querying with nslookup but verification status is still "pending" in Azure Front Door Premium.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.