Skip to main content

Add a domain and validate it using HTTP practical demonstration with unique filename as the validation method

Prevalidate your domain using the HTTP practical demonstration with unique filename DCV method

Add a domain and demonstrate control over the domain by hosting a file with a unique filename that contains a DigiCert-generated random value (provided for the domain in your CertCentral account) at a predetermined location on your website: http://{domain-name}/.well-known/pki-validation/{filename}.txt.

After you've created the file and placed it on your site, DigiCert visits the specified URL to confirm the presence of our random value. Make sure to avoid the Common mistakes: HTTP Practical Demonstration DCV method.

Important

Only use the HTTP Practical Demonstration DCV methods to demonstrate control over fully qualified domain names (FQDNs) exactly as named. To learn more, visit Domain Validation Policy Changes.

Use one of the other supported DCV methods, such as email, DNS TXT, and CNAME, to prevalidate entire domains and subdomains.

Before you begin

When you add a domain to your account, you must assign the domain to an organization in your account. However, before assigning a domain to it, you must first add the organization to your account. See Add an organization to your CertCentral account.

Additionally, if you want the domain used for OV, EV, or Private TLS/SSL certificates, you must submit its organization for prevalidation and include those matching validation types. See Submit an organization for pre-validation.

Step 1: Add a domain and select HTTP practical demonstration with unique filename as the DCV method

  1. In your CertCentral account, go to the Domains page.

    In the left main menu, go to Certificates > Domains.

  2. On the Domains page, select New domain.

  3. On the new Domains page, under Domain details enter the following information:

    1. Domain name

      Enter the domain you want to prevalidate.

    2. Organization

      In the dropdown, select the organization you want to assign the domain to.

  4. Under Domain control validation (DCV) method, select HTTP Practical Demonstration with unique filename.

  5. When ready, select Submit for validation.

Step 2: Use HTTP practical demonstration with unique filename to demonstrate control over the domain

  1. On the domain's details page, in the Domain control validation (DCV) method section under User actions, do the following:

    1. Create a .txt file and add the DigiCert-provided random value.

      1. Open a text editor (e.g., Notepad).

      2. In the Your unique verification token box, copy your token and paste the random value in text editor.

        The random value expires after 30 days.

      3. Save the .txt file under the DigiCert-provided random filename (e.g., ES3e9203kd0238K3.txt).

    2. Create the .well-known/pki-validation/ directory on your site.

      For Windows-based servers, the .well-known folder must be created via command line (mkdir .well-known).

  2. Place the .txt file on your site under .well-known/pki-validation.

    The URL should look something like this:

    http://[yourdomain]/.well-known/pki-validation/ES3e9203kd0238K3.txt

  3. Complete domain validation.

    1. In your CertCentral account, in the left main menu, go to Certificates > Domains.

    2. On the Domains page, in the Domain name column, select the domain link.

    3. On the domain's details page, in the Domain control validation (DCV) method section under User actions select Check HTTP Token.