Rémi Lapeyre

> We view this change as dangerous, since a user can create child tokens with whatever arbitrary metadata they like. Wow, indeed I completely missed this. I suppose implementing this...

Hi @jorgejarne, thanks for opening this issue. I'm not sure you've set up `dns_resolvers` properly, can you please try setting up the account with `dns_resolvers="ns41.cloudns.net,ns42.cloudns.net,ns43.cloudns.net"`?

Hi @the-maldridge, could you give more information about the request you are making to Vault and what ACME provider you are using?

Indeed, could you please provide the command that you have been using?

If you are using the DNS validation method it is very possible that there is some time needed for the DNS to update. I'm glad it is now working, if...

Hi @the-maldridge, can you please set the parameter `ignore_dns_propagation` on your account? It should return a better error message, then I will make the appropriate fixes based on the results.

Hi @mbrancato, thanks for looking into it. I think making the API of this backend as close as possible as the PKI one was my idea as well at first...

Yes the Venafi backend does that so I guess it's ok for us to do that too. I still think it may lead to issues but this is something that...

Hi, I'm working on this, I can't give an ETA on when it will be ready but the first experiments seems like it should be possible to get working. >...

I know how I want to go forward on this issue, I need to find the time to write the code and don’t have an ETA for now. > On...