Search Our Database

How to Enable CAA Record Support in DirectAdmin

Last updated on |
by

Introduction

CAA (Certification Authority Authorization) records define which certificate authorities (CAs) are permitted to issue SSL certificates for your domain. If the CAA option is not visible in DirectAdmin’s DNS Management panel, it is likely disabled by default.


CAA Option Missing in DNS Panel

Prerequisites

  • SSH access to your server
  • Root privileges
  • Access to the DirectAdmin control panel

Step-by-Step Guide

SSH to Server

Step 1: SSH into Your Server

Open the terminal and connect to your server via SSH using the following command:

ssh root@your_server_ip

Replace your_server_ip with the actual IP address of your server.

Step 2: Switch to Root Privileges

To execute administrative commands, switch to root privileges by running:

sudo su -
Edit DirectAdmin Configuration

Step 1: Open the Configuration File

Use a text editor like vi to edit the DirectAdmin config file:

vi /usr/local/directadmin/conf/directadmin.conf

Step 2: Enable CAA Support

Add or modify the following line:

dns_caa=1

Make sure the value is set to 1.

DirectAdmin Configuration with dns_caa enabled

Step 3: Save and Exit

To save and exit the editor, press Esc, type :wq, and hit Enter.

Step 4: Restart DirectAdmin

Run the following command to apply your changes:

service directadmin restart
Verify CAA Record Availability

After restarting, navigate to the DNS Management section in DirectAdmin. You should now see an option to add CAA records alongside other record types such as A, MX, CNAME, and TXT.


CAA Record Enabled Screenshot

Conclusion

By enabling the dns_caa parameter in DirectAdmin’s configuration, you can control which certificate authorities are allowed to issue SSL certificates for your domain—enhancing domain security.

If you need further assistance, please contact our support team at support@ipserverone.com.

Related Article