Frondoor Std/Premium TXT Domain validation lookup via CNAME

New Contributor

Hi, I'm not sure if there is a better place to ask my question as there is no frontdoor board in the techcommunity. 
Anyway, my question is about the TXT Domain validation process of frontdoor standard/premium.
I didn't find any hint about the concept of using CNAME records to support the TXT lookup. Does anyone know if this is supported in Azure Frontdoor?

Frontdoor is looking up the TXT entry "xyz123" on

I create a CNAME record pointing to
I create a TXT record with the content "xyz123".

Before you scream at me, please see where this is supported.

Since Let’s Encrypt follows the DNS standards when looking up TXT records
for DNS-01 validation, you can use CNAME records or NS records to delegate
answering the challenge to other DNS zones.
This can be used to delegate the _acme-challenge subdomain to a validation-specific server or zone.
It can also be used if your DNS provider is slow to update, and you want to delegate to a quicker-updating server.

1 Reply
best response confirmed by matzter (New Contributor)
I can actually answer myself on this, it works indeed.
The way we use this might be interesting for some of you, as in fact it allows you to easily plan and execute a DNS change that is independent from the actual setup.

With my application that uses frontdoor I deploy a separat DNS zone which is independent of the actual customer DNS. Then I tell the customer to create two CNAME records and which point to and the is the DNS zone I deploy with frontdoor, and create the TXT record for the certificate validation and the CNAME entry for the CDN endpoint. Works fine.