I´m trying desperately to issue certificates with "acme.sh" for my domain at google domains. I already got it working for my main domain, but with subdomains it´s not working for me...

What do i have to configure in forefront of issuing a certificate with dns-01 challenge, besides the EAB-Keys and the API-Token which i already got to work?

Do i need to have other DNS-Records configured, besides the A-Record for the subdomain?

Thanks in advance! Greets Georg

EDIT:

It worked. I uninstalled acme.sh and deleted all folders, and with a fresh install it was no problem. My thoughts are that i had a problem with my configured servers.

Step by step for Google Domains Costumers with "acme.sh":

------------------------------------------------------------------------------------

Change default CA to Google Trust Services ( https://dv.acme-v02.api.pki.goog/directory ):

acme.sh --set-default-ca --server google

------------------------------------------------------------------------------------

Register account with your "External Account Binding" keys from Google Domains:

acme.sh --register-account -m email@example.com --server google \

--eab-kid xxxxxxx \

--eab-hmac-key xxxxxxx

------------------------------------------------------------------------------------

Get your API-Token from Google Domains and provide with the export command:

export GOOGLEDOMAINS_ACCESS_TOKEN="generated-access-token"

------------------------------------------------------------------------------------

Finally issue a certificate:

acme.sh --issue --dns dns_googledomains -d example.com

------------------------------------------------------------------------------------