How can the Administrator fix this issue?

By:
In: SOA-C01
Tagged:
With: 1 Comment
A SysOps Administrator is implementing SSL for a domain of an internet-facing application running behind an Application Load Balancer (ALB).The Administrator decides to use an SSL certificate from Amazon Certificate Manager (ACM) to secure it.Upon creating a request for the ALB fully qualified domain name (FQDN), it fails, and the error message `Domain Not Allowed` is displayed.

How can the Administrator fix this issue?

Contact the domain registrar and ask them to provide the verification required by AWS.

Place a new request with the proper domain name instead of the ALB FQDN

Select the certificate request in the ACM console and resend the validation email.

Contact AWS Support and verify the request by answering security challenge questions.

Explanations:

Contacting the domain registrar is not necessary, as the issue relates to the domain name format rather than the need for verification by AWS. ACM validation requires a correctly formatted domain name that the user controls.

The errorDomain Not Allowedsuggests that the request was made with an invalid domain name (the ALB FQDN). The Administrator should place a new request using a valid domain name that they own and control.

Resending the validation email is irrelevant since the error message indicates that the domain is not allowed. The domain name needs to be corrected before any validation can occur.

While contacting AWS Support can help resolve issues, this specific error pertains to the domain name used in the request. The proper resolution involves correcting the domain name rather than answering security questions.

2025-09-28

1 Comment

  1. Samantha
    Author

    As far as I can tell, the answer is:
    Place a new request with the proper domain name instead of the ALB FQDN

Leave a Reply

Your email address will not be published. Required fields are marked *

2 × 1 =