Skip to main content

Add a domain and validate it using HTTP practical demonstration

Add a domain to CertCentral and validate is using the HTTP practical demonstration DCV method

Add a domain and demonstrate control over the domain by hosting a file containing a DigiCert-generated random value (provided for the domain in your CertCentral account) at a predetermined location on your website: http://{domain-name}/.well-known/pki-validation/fileauth.txt.

After you've created the file and placed it on your site, DigiCert visits the specified URL to confirm the presence of your unique random value. Make sure to avoid the Common mistakes: HTTP practical demonstration DCV method.

Important

Only use the HTTP Practical Demonstration DCV methods to demonstrate control over fully qualified domain names (FQDNs) exactly as named. To learn more, visit Domain Validation Policy Changes.

Use one of the other supported DCV methods, such as email, DNS TXT, and CNAME, to prevalidate entire domains and subdomains.

Before you begin

When you add a domain to your account, you must assign the domain to an organization in your account. However, before assigning a domain to it, you must first add the organization to your account. See Add an organization to your CertCentral account.

Additionally, if you want the domain used for OV, EV, or Private TLS/SSL certificates, you must submit its organization for prevalidation and include those matching validation types. See Submit an organization for pre-validation.

Step I: Add a domain and select HTTP practical demonstration as the DCV method

  1. In your CertCentral account, to the the Domains page.

    In the left main menu, go to Certificates > Domain.

  2. On the Domains page, select New Domain.

  3. On the New Domain page, under Domain Details, enter the following domain information:

    • Domain name

      Enter the domain you want to prevalidate.

    • Organization

      In the dropdown, select the organization you want to assign the domain to.

  4. Under Domain Control Validation (DCV) method, select HTTP Practical Demonstration.

  5. When ready, select Submit for validation.

Step II: Use HTTP practical demonstration to demonstrate control over the domain

  1. On the domain's details page, in the Domain control validation (DCV) method section under User actions, do the following:

    1. Create your .txt file and add the DigiCert-provided random value.

      1. Open a text editor (e.g., Notepad).

      2. In the Your unique verification token box, copy your token and paste the random value in text editor.

        The random value expires after 30 days.

      3. Save the .txt file under this name: fileauth.txt.

    2. Create the .well-known/pki-validation/ directory on your site.

      For Windows-based servers, the .well-known folder must be created via command line (mkdir .well-known).

  2. Place the fileauth.txt file on your site under .well-known/pki-validation.

    The URL should look something like this:

    http://[yourdomain]/.well-known/pki-validation/fileauth.txt

  3. Complete the domain validation.

    1. In your CertCentral account, in the left main menu, go to Certificates > Domains.

    2. On the Domains page, in the Domain name column, select the domain link.

    3. On the domain's details page, in the Domain control validation (DCV) method section under User actions select Check HTTP Token.

In this section: