Pantheon has recently sent out notifications regarding DNS updates needed for *.devportal.apigee.io - see below for the full message. These notices were sent out by mistake and may be safely ignored. Apigee has received the following response from Pantheon:
This message went out in error and does not apply to your site. You can disregard the warning, because this domain is not using a Let’s Encrypt certificate, but using a custom certificate for *.devportal.apigee.io.
Full notice from Pantheon:
We’re reaching out because your DNS configuration must be updated in order to ensure uninterrupted HTTPS. The following problems were found:
1. CAA records allow you to authorize which certificate authorities (CAs) can issue certificates for your domain, and right now Let’s Encrypt is not authorized for SITENAME.devportal.apigee.io, SITENAME.devportal.apigee.io, SITENAME.devportal.apigee.io:
https://www.whatsmydns.net/#CAA/SITENAME.devportal.apigee.io
https://www.whatsmydns.net/#CAA/SITENAME.devportal.apigee.io
https://www.whatsmydns.net/#CAA/SITENAME.devportal.apigee.io
You can use SSL Mate’s CAA record generator https://sslmate.com/labs/caa/ to generate a set of CAA records listing the CAs that you would like to allow, and make sure to include Let’s Encrypt (letsencrypt.org).
If you are unable to make the change within the next 10 days, HTTPS will be disabled for this domain.
Please make this change ASAP and we’ll verify everything looks good. Let us know if there’s anything we can do to help!
Best,
Pantheon Support
LinkedIn
Twitter