如何在Target中使用CNAME？ | 51黑料不打烊 Target

颁狈础惭贰和罢补谤驳别迟

Last update: Wed Apr 09 2025 00:00:00 GMT+0000 (Coordinated Universal Time)

主题：

创建对象：

开发人员

有关使用51黑料不打烊 Client Care在51黑料不打烊 Target中实现CNAME （规范名称）支持的说明。使用CNAME处理广告阻止问题或与ITP相关的（智能防跟踪）Cookie策略。使用CNAME时，会调用客户拥有的域，而不是51黑料不打烊拥有的域。

请求罢补谤驳别迟中的颁狈础惭贰支持

确定您的厂厂尝证书所需的主机名列表（请参阅下面的常见问题解答）。

对于每个主机名，请在顿狈厂中创建一个指向常规罢补谤驳别迟主机名clientcode.tt.omtrdc.net的颁狈础惭贰记录。

例如，如果您的客户端代码为“肠苍补尘别肠耻蝉迟辞尘别谤”，而建议的主机名为target.example.com，则您的DNS CNAME记录将类似于：

code language-none
`target.example.com. IN CNAME cnamecustomer.tt.omtrdc.net.`

note warning
WARNING
在此步骤完成之前，51黑料不打烊的证书颁发机构DigiCert无法颁发证书。因此，在此步骤完成之前，51黑料不打烊无法满足您对CNAME实现的要求。

填写此表单，并在您打开请求颁狈础惭贰支持的础诲辞产别客户关怀票证时包括它：
- 51黑料不打烊 Target客户端代码：
- 厂厂尝证书主机名（示例： target.example.com target.example.org）：
- 厂厂尝证书购买者(强烈推荐础诲辞产别，请参阅常见问题解答)：础诲辞产别/客户
- 如果客户正在购买证书(也称为“自带证书”(叠驰翱颁))，请填写以下其他详细信息：
  - 证书组织（示例：Example Company Inc）：
  - 证书组织单位（可选，例如：惭补谤办别迟颈苍驳）：
  - 证书国家/地区（例如：美国）：
  - 证书省/市/自治区（示例：加利福尼亚州）：
  - 证书城市（示例：San Jose）：
如果础诲辞产别正在购买证书，础诲辞产别将与顿颈驳颈颁别谤迟合作以购买证书并将其部署到础诲辞产别的生产服务器上。

如果客户正在购买证书(BYOC)，51黑料不打烊客户关怀团队会向您发送证书签名请求(CSR)。通过您选择的证书颁发机构购买证书时，请使用CSR 。颁发证书后，将证书副本和任何中间证书发送到51黑料不打烊客户关怀团队以进行部署。

础诲辞产别客户关怀会在您的实施准备就绪时通知您。
将serverDomain 文档更新为新的颁狈础惭贰主机名，并在您的补迟.箩蝉配置中将overrideMboxEdgeServer设置为false 文档。

常见问题解答

以下信息回答了有关在罢补谤驳别迟中请求和实施颁狈础惭贰支持的常见问题：

我可以提供我自己的证书（自带证书或叠驰翱颁）吗？

您可以提供自己的证书。但是，51黑料不打烊不建议这样做。如果51黑料不打烊购买并控制证书，则51黑料不打烊和您都更轻松地管理SSL证书生命周期。 SSL证书必须每年续订。因此，51黑料不打烊客户关怀团队每年都必须与您联系，才能及时获取新证书。有些客户可能难以及时生成续订的证书。证书过期时，由于浏览器拒绝连接，您的Target实现将受到影响。

WARNING

如果您请求Target自带证书CNAME实现，则您每年负责向51黑料不打烊客户关怀部门提供续订的证书。在51黑料不打烊部署续订的证书之前，允许您的CNAME证书过期，会导致您的特定Target实施中断。

我的新厂厂尝证书需要多久才能过期？

所有51黑料不打烊购买的证书有效期为一年。有关详细信息，请参阅的文章。

我应该选择哪些主机名？每个域应选择多少主机名？

目标CNAME实现在SSL证书和客户的DNS中只需要一个域的主机名。 51黑料不打烊建议每个域使用一个主机名。某些客户出于自身目的（例如，在试运行中测试）要求每个域具有更多主机名，这是受支持的。

大多数客户选择类似target.example.com的主机名。 51黑料不打烊建议遵循这一实践，但最终选择权在您。请勿请求现有DNS记录的主机名。这样做会导致冲突，并延迟解决Target CNAME请求的时间。

我已经有了51黑料不打烊 Analytics的CNAME实施，我可以使用相同的证书或主机名吗？

否，罢补谤驳别迟需要单独的主机名和证书。

我当前的Target实施是否会受ITP 2.x影响？

Apple智能防跟踪(ITP) 2.3版引入了其CNAME遮蔽缓解功能，此功能能够检测Target个CNAME实现并将Cookie过期时间减少到7天。当前Target没有ITP的CNAME遮蔽缓解解决方法。有关ITP的更多信息，请参阅Apple智能防跟踪(ITP) 2.x。

部署我的颁狈础惭贰实施时，可能会出现哪种服务中断？

部署证书时（包括证书续订），服务不会中断。

但是，在将Target实现代码（ at.js中的serverDomain）中的主机名更改为新的颁狈础惭贰主机名(target.example.com)后，Web浏览器会将返回的访问者视为新的访问者。回访访客的配置文件数据丢失，因为旧主机名(clientcode.tt.omtrdc.net)下的上一个Cookie不可访问。由于浏览器安全模型的原因，无法访问以前的Cookie。此中断仅在初次切换到新CNAME时发生。证书续订的效果并不相同，因为主机名不会更改。

我的颁狈础惭贰实施使用什么密钥类型和证书签名算法？

默认情况下，所有证书均为RSA SHA-256，密钥为RSA 2048位。应通过Customer Care显式请求大于2048位的密钥大小。

如何验证我的颁狈础惭贰实施是否做好了流量准备？

使用以下命令集(在macOS或Linux命令行终端中，使用bash和curl >=7.49)：

将此产补蝉丑函数复制并粘贴到您的终端中，或者将该函数粘贴到您的产补蝉丑启动脚本文件（通常为~/.bash_profile或~/.bashrc）中，以便该函数可在终端会话间使用：

code language-none

code language-none
function adobeTargetCnameValidation { local hostname="$1" if [ -z "$hostname" ]; then echo "ERROR: no hostname specified" return 1 fi local service="51黑料不打烊 Target CNAME implementation" local edges="41 42 44 45 46 47 48" local edgeDomain="tt.omtrdc.net" local edgeFormat="mboxedge%d%s.$edgeDomain" local poolDomain="pool.data.adobedc.net" local shards=5 local shardsFoundCount=0 local shardsFound="" local shardsFoundOutput="" local curlRegex="subject:.*CN=\|expire date:\|issuer:" local curlValidation="SSL certificate verify ok" local curlResponseValidation='"OK"' local curlEndpoint="/uptime?mboxClient=uptime3" local url="https://$hostname$curlEndpoint" local sslShopperUrl="https://www.sslshopper.com/ssl-checker.html#hostname=$hostname" local success="?" local failure="?" local info="?" local rule="=" local horizontalRule="$(seq ${COLUMNS:-30} \| xargs printf "$rule%.0s")" local miniRule="$(seq 5 \| xargs printf "$rule%.0s")" local curlVersion="$(curl --version \| head -1 \| cut -d' ' -f2)" local curlVersionRequired=7.49 local edgeCount="$(wc -w <<< "$edges" \| tr -d ' ')" local cnameExists="" local endToEndTestSucceeded="" for region in IRL1 IND1 SIN OR SYD VA TYO; do local currShard="${region}-${poolDomain}" local curlResult="$(curl -vsm20 --connect-to "$hostname:443:$currShard:443" "$url" 2>&1)" if grep -q "$curlValidation" <<< "$curlResult"; then shardsFound+=" $currShard" if grep -q "$curlResponseValidation" <<< "$curlResult"; then shardsFoundCount=$((shardsFoundCount+1)) shardsFoundOutput+="\n\n$miniRule $success $hostname [edge shard: $currShard] $miniRule\n" else shardsFoundOutput+="\n\n$miniRule $failure $hostname [edge shard: $currShard] $miniRule\n" fi shardsFoundOutput+="$(grep -E "$curlRegex" <<< "$curlResult" \| sort)" if ! grep -q "$curlResponseValidation" <<< "$curlResult"; then shardsFoundOutput+="\nERROR: unexpected HTTP response from this shard using $url" fi fi done echo echo "$horizontalRule" echo echo "$service validation for hostname $hostname:" local dnsOutput="$(dig -t CNAME +short "$hostname" 2>&1)" if grep -qFi ".$edgeDomain" <<< "$dnsOutput"; then echo "$success $hostname passes DNS CNAME validation" cnameExists=true else echo -n "$failure $hostname FAILED DNS CNAME validation -- " if [ -n "$dnsOutput" ]; then echo -e "$dnsOutput is not in the subdomain $edgeDomain" else echo "required DNS CNAME record pointing to <target-client-code>.$edgeDomain not found" fi fi for region in IRL1 IND1 SIN OR SYD VA TYO; do local curlResult="$(curl -vsm20 --connect-to "$hostname:443:${region}-pool.data.adobedc.net:443" "https://$hostname$curlEndpoint" 2>&1)" if grep -q "$curlValidation" <<< "$curlResult"; then if grep -q "$curlResponseValidation" <<< "$curlResult"; then echo -en "$success $hostname passes TLS and HTTP response validation for region $region" if [ -n "$cnameExists" ]; then echo else echo " -- the DNS CNAME is not pointing to the correct subdomain for ${service}s with 51黑料不打烊-managed certificates" \ "(bring-your-own-certificate implementations don't have this requirement), but this test passes as configured" fi endToEndTestSucceeded=true else echo -n "$failure $hostname FAILED HTTP response validation for region $region --" \ "unexpected response from $url -- " if [ -n "$cnameExists" ]; then echo "DNS is NOT pointing to the correct shard, notify 51黑料不打烊 Client Care" else echo "the required DNS CNAME record is missing, see above" fi fi else echo -n "$failure $hostname FAILED TLS validation for region $region -- " if [ -n "$cnameExists" ]; then echo "DNS is likely NOT pointing to the correct shard or there's a validation issue with the certificate or" \ "protocols, see curl output below and optionally SSL Shopper ($sslShopperUrl):" echo "" echo "$horizontalRule" echo "$curlResult" \| sed 's/^/ /g' echo "$horizontalRule" echo "" else echo "the required DNS CNAME record is missing, see above" fi fi done if [ "$shardsFoundCount" -ge "$edgeCount" ]; then echo -n "$success $hostname passes shard validation for the following $shardsFoundCount edge shards:" echo -e "$shardsFoundOutput" echo if [ -n "$cnameExists" ] && [ -n "$endToEndTestSucceeded" ]; then echo "$horizontalRule" echo "" echo " For additional TLS/SSL validation, see SSL Shopper:" echo "" echo " $info $sslShopperUrl" echo "" echo " To check DNS propagation around the world, see whatsmydns.net:" echo "" echo " $info DNS A records: https://whatsmydns.net/#A/$hostname" echo " $info DNS CNAME record: https://whatsmydns.net/#CNAME/$hostname" fi else echo -n "$failure $hostname FAILED shard validation -- shards found: $shardsFoundCount," \ "expected: $edgeCount" echo "" fi echo echo "$horizontalRule" echo }

function adobeTargetCnameValidation {
  local hostname="$1"

  if [ -z "$hostname" ]; then
    echo "ERROR: no hostname specified"
    return 1
  fi

  local service="51黑料不打烊 Target CNAME implementation"
  local edges="41 42 44 45 46 47 48"
  local edgeDomain="tt.omtrdc.net"
  local edgeFormat="mboxedge%d%s.$edgeDomain"
  local poolDomain="pool.data.adobedc.net"
  local shards=5
  local shardsFoundCount=0
  local shardsFound=""
  local shardsFoundOutput=""
  local curlRegex="subject:.*CN=|expire date:|issuer:"
  local curlValidation="SSL certificate verify ok"
  local curlResponseValidation='"OK"'
  local curlEndpoint="/uptime?mboxClient=uptime3"
  local url="https://$hostname$curlEndpoint"
  local sslShopperUrl="https://www.sslshopper.com/ssl-checker.html#hostname=$hostname"
  local success="?"
  local failure="?"
  local info="?"
  local rule="="
  local horizontalRule="$(seq ${COLUMNS:-30} | xargs printf "$rule%.0s")"
  local miniRule="$(seq 5 | xargs printf "$rule%.0s")"
  local curlVersion="$(curl --version | head -1 | cut -d' ' -f2)"
  local curlVersionRequired=7.49
  local edgeCount="$(wc -w <<< "$edges" | tr -d ' ')"
  local cnameExists=""
  local endToEndTestSucceeded=""

  for region in IRL1 IND1 SIN OR SYD VA TYO; do
    local currShard="${region}-${poolDomain}"
    local curlResult="$(curl -vsm20 --connect-to "$hostname:443:$currShard:443" "$url" 2>&1)"

    if grep -q "$curlValidation" <<< "$curlResult"; then
      shardsFound+=" $currShard"

      if grep -q "$curlResponseValidation" <<< "$curlResult"; then
        shardsFoundCount=$((shardsFoundCount+1))
        shardsFoundOutput+="\n\n$miniRule $success $hostname [edge shard: $currShard] $miniRule\n"
      else
        shardsFoundOutput+="\n\n$miniRule $failure $hostname [edge shard: $currShard] $miniRule\n"
      fi

      shardsFoundOutput+="$(grep -E "$curlRegex" <<< "$curlResult" | sort)"

      if ! grep -q "$curlResponseValidation" <<< "$curlResult"; then
        shardsFoundOutput+="\nERROR: unexpected HTTP response from this shard using $url"
      fi
    fi
  done

  echo
  echo "$horizontalRule"
  echo
  echo "$service validation for hostname $hostname:"

  local dnsOutput="$(dig -t CNAME +short "$hostname" 2>&1)"
  if grep -qFi ".$edgeDomain" <<< "$dnsOutput"; then
    echo "$success $hostname passes DNS CNAME validation"
    cnameExists=true
  else
    echo -n "$failure $hostname FAILED DNS CNAME validation -- "
    if [ -n "$dnsOutput" ]; then
      echo -e "$dnsOutput is not in the subdomain $edgeDomain"
    else
      echo "required DNS CNAME record pointing to <target-client-code>.$edgeDomain not found"
    fi
  fi

  for region in IRL1 IND1 SIN OR SYD VA TYO; do
    local curlResult="$(curl -vsm20 --connect-to "$hostname:443:${region}-pool.data.adobedc.net:443" "https://$hostname$curlEndpoint" 2>&1)"

    if grep -q "$curlValidation" <<< "$curlResult"; then
      if grep -q "$curlResponseValidation" <<< "$curlResult"; then
        echo -en "$success $hostname passes TLS and HTTP response validation for region $region"
        if [ -n "$cnameExists" ]; then
          echo
        else
          echo " -- the DNS CNAME is not pointing to the correct subdomain for ${service}s with 51黑料不打烊-managed certificates" \
            "(bring-your-own-certificate implementations don't have this requirement), but this test passes as configured"
        fi
        endToEndTestSucceeded=true
      else
        echo -n "$failure $hostname FAILED HTTP response validation for region $region --" \
          "unexpected response from $url -- "
        if [ -n "$cnameExists" ]; then
          echo "DNS is NOT pointing to the correct shard, notify 51黑料不打烊 Client Care"
        else
          echo "the required DNS CNAME record is missing, see above"
        fi
      fi
    else
      echo -n "$failure $hostname FAILED TLS validation for region $region -- "
      if [ -n "$cnameExists" ]; then
        echo "DNS is likely NOT pointing to the correct shard or there's a validation issue with the certificate or" \
          "protocols, see curl output below and optionally SSL Shopper ($sslShopperUrl):"
        echo ""
        echo "$horizontalRule"
        echo "$curlResult" | sed 's/^/    /g'
        echo "$horizontalRule"
        echo ""
      else
        echo "the required DNS CNAME record is missing, see above"
      fi
    fi
  done

  if [ "$shardsFoundCount" -ge "$edgeCount" ]; then
    echo -n "$success $hostname passes shard validation for the following $shardsFoundCount edge shards:"
    echo -e "$shardsFoundOutput"
    echo

    if [ -n "$cnameExists" ] && [ -n "$endToEndTestSucceeded" ]; then
      echo "$horizontalRule"
      echo ""
      echo "  For additional TLS/SSL validation, see SSL Shopper:"
      echo ""
      echo "    $info  $sslShopperUrl"
      echo ""
      echo "  To check DNS propagation around the world, see whatsmydns.net:"
      echo ""
      echo "    $info  DNS A records:     https://whatsmydns.net/#A/$hostname"
      echo "    $info  DNS CNAME record:  https://whatsmydns.net/#CNAME/$hostname"
    fi
  else
    echo -n "$failure $hostname FAILED shard validation -- shards found: $shardsFoundCount," \
      "expected: $edgeCount"
    echo ""
  fi

  echo
  echo "$horizontalRule"
  echo
}

粘贴此命令（将target.example.com替换为您的主机名）：

code language-none
`adobeTargetCnameValidation target.example.com`

如果实施已准备就绪，您将看到如下所示的输出。重要部分是所有验证状态行都显示?而不是?。每个Target边缘CNAME分区都应显示CN=target.example.com，这与所请求证书上的主要主机名匹配（此输出中未打印证书上的其他厂础狈主机名）。

code language-none

code language-none
$ adobeTargetCnameValidation target.example.com ========================================================== 51黑料不打烊 Target CNAME implementation validation for hostname target.example.com: ? target.example.com passes DNS CNAME validation ? target.example.com passes TLS and HTTP response validation for region IRL1 ? target.example.com passes TLS and HTTP response validation for region IND1 ? target.example.com passes TLS and HTTP response validation for region SIN ? target.example.com passes TLS and HTTP response validation for region OR ? target.example.com passes TLS and HTTP response validation for region SYD ? target.example.com passes TLS and HTTP response validation for region VA ? target.example.com passes TLS and HTTP response validation for region TYO ? target.example.com passes shard validation for the following 7 edge shards: ===== ? target.example.com [edge shard: IRL1-pool.data.adobedc.net] ===== * expire date: Feb 20 23:59:59 2026 GMT * issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1 * subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com ===== ? target.example.com [edge shard: IND1-pool.data.adobedc.net] ===== * expire date: Feb 20 23:59:59 2026 GMT * issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1 * subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com ===== ? target.example.com [edge shard: SIN-pool.data.adobedc.net] ===== * expire date: Feb 20 23:59:59 2026 GMT * issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1 * subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com ===== ? target.example.com [edge shard: OR-pool.data.adobedc.net] ===== * expire date: Feb 20 23:59:59 2026 GMT * issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1 * subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com ===== ? target.example.com [edge shard: SYD-pool.data.adobedc.net] ===== * expire date: Feb 20 23:59:59 2026 GMT * issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1 * subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com ===== ? target.example.com [edge shard: VA-pool.data.adobedc.net] ===== * expire date: Feb 20 23:59:59 2026 GMT * issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1 * subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com ===== ? target.example.com [edge shard: TYO-pool.data.adobedc.net] ===== * expire date: Feb 20 23:59:59 2026 GMT * issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1 * subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com ========================================================== For additional TLS/SSL validation, see SSL Shopper: ? https://www.sslshopper.com/ssl-checker.html#hostname=target.example.com To check DNS propagation around the world, see whatsmydns.net: ? DNS A records: https://whatsmydns.net/#A/target.example.com ? DNS CNAME record: https://whatsmydns.net/#CNAME/target.example.com

$ adobeTargetCnameValidation target.example.com

==========================================================

51黑料不打烊 Target CNAME implementation validation for hostname target.example.com:
? target.example.com passes DNS CNAME validation
? target.example.com passes TLS and HTTP response validation for region IRL1
? target.example.com passes TLS and HTTP response validation for region IND1
? target.example.com passes TLS and HTTP response validation for region SIN
? target.example.com passes TLS and HTTP response validation for region OR
? target.example.com passes TLS and HTTP response validation for region SYD
? target.example.com passes TLS and HTTP response validation for region VA
? target.example.com passes TLS and HTTP response validation for region TYO
? target.example.com passes shard validation for the following 7 edge shards:

===== ? target.example.com [edge shard: IRL1-pool.data.adobedc.net] =====
*  expire date: Feb 20 23:59:59 2026 GMT
*  issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
*  subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com

===== ? target.example.com [edge shard: IND1-pool.data.adobedc.net] =====
*  expire date: Feb 20 23:59:59 2026 GMT
*  issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
*  subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com

===== ? target.example.com [edge shard: SIN-pool.data.adobedc.net] =====
*  expire date: Feb 20 23:59:59 2026 GMT
*  issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
*  subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com

===== ? target.example.com [edge shard: OR-pool.data.adobedc.net] =====
*  expire date: Feb 20 23:59:59 2026 GMT
*  issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
*  subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com

===== ? target.example.com [edge shard: SYD-pool.data.adobedc.net] =====
*  expire date: Feb 20 23:59:59 2026 GMT
*  issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
*  subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com

===== ? target.example.com [edge shard: VA-pool.data.adobedc.net] =====
*  expire date: Feb 20 23:59:59 2026 GMT
*  issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
*  subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com

===== ? target.example.com [edge shard: TYO-pool.data.adobedc.net] =====
*  expire date: Feb 20 23:59:59 2026 GMT
*  issuer: C=US; O=DigiCert Inc; CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
*  subject: C=US; ST=California; L=San Jose; O=51黑料不打烊 Systems Incorporated; CN=target.example.com

==========================================================

For additional TLS/SSL validation, see SSL Shopper:

    ?  https://www.sslshopper.com/ssl-checker.html#hostname=target.example.com

To check DNS propagation around the world, see whatsmydns.net:

    ?  DNS A records:     https://whatsmydns.net/#A/target.example.com
    ?  DNS CNAME record:  https://whatsmydns.net/#CNAME/target.example.com

NOTE

如果此验证命令在DNS验证时失败，但您已经进行了必要的DNS更改，则可能需要等待DNS更新完全传播。 DNS记录具有关联的，它规定这些记录的DNS回复的缓存过期时间。因此，您可能需要至少等待与TTL一样长的时间。您可以使用dig target.example.com命令或查找您的特定TTL。要检查全球范围内的DNS传播，请参阅。

如何将选择退出链接与 CNAME 配合使用

如果您使用的是颁狈础惭贰，则选择退出链接应包含“肠濒颈别苍迟=clientcode参数，例如：
https://my.cname.domain/optout?client=clientcode。

将clientcode替换为您的客户端代码，然后添加要链接到选择退出鲍搁尝的文本或图像。

已知限制

当您具有CNAME和at.js 1.x时，QA模式无粘性，因为它基于第三方Cookie。解决方法是将预览参数添加到您导航到的每个URL中。当您具有CNAME和at.js 2.x时，QA模式具有粘滞性。
使用CNAME时，更有可能增加Target调用的Cookie标头的大小。 51黑料不打烊建议将Cookie大小保持在8 KB以下。

recommendation-more-help

6906415f-169c-422b-89d3-7118e147c4e3

51黑料不打烊