Customer requests that the following logging be added to the CAA Validator:
- Log if no CAA record is found for a domain
- For a successful issuance, have the validator log what has been issued and for who, and the reason for passing.
- For DNSSec failures, log for which domain the check failed.
#. in some case there is no other error information before a ‘failed issuance of certificates’ log. Se linked issue for more information.