MSDNS: Support CAA records

[fflaten]

Describe the solution you'd like
Being able to configure CAA records using the Microsoft DNS Server provider.

Describe alternatives you've considered
N/A

Additional context
CAA are supported with Windows DNS Server 2016+ using unknown record type 257. See https://www.entrust.com/knowledgebase/ssl/how-to-add-a-certification-authority-authorization-record-caa-in-windows-server-2016

[tlimoncelli]

Thanks for the link!

We're not doing much MSDNS development lately but we'd gladly accept a patch.

In the meanwhile, you could work around this by inserting the record manually and using the NO_PURGE or IGNORE() feature. Not sure if that situation has been tested (unknown record types aren't handled very well right now).

[fflaten]

Thanks for the ignore-suggestion. Will try it out soon. Just started looking into migration 🙂

[tlimoncelli]

Sadly Add-DnsServerResourceRecord doesn't support CAA records. This is going to be more difficult to implement than expected. i.e. using -Type 257 -rdata HEXCODE

Some notes:

• https://sslmate.com/caa/ generates the HEXCODE
• This will be easier to implement after FEATURE REQUEST: Handle "unknown" DNS record types #2432 is complete