Validate domains before ordering certificates for them
Use DigiCert’s prevalidation process to quicken your certificate issuance
Per industry standards, CAs can't issue TLS or other certificates with your domains, IP addresses, and email domains unless you demonstrate control over them. We refer to this process as the Domain Control Validation (DCV) process.
CertCentral features a domain prevalidation process that allows you to validate your domains before you begin ordering certificates for them. Validating the domain ahead of time allows for quicker certificate issuance. For immediate certificate issuance, validating your domains ahead of time is required. See OV/EV certificate immediate issuance.
Acronyms in this article: Certificate Authorities (CAs), Transport Security Layer (TLS), Domain Name System (DNS), Certificate Authority Authorization (CAA), Conical Name (CNAME), text (TXT), organization validation (OV), extended validation (EV)
How the domain prevalidation process works
To validate a domain before ordering certificates for it, you go to the Domains page and add it to CertCentral.
Prerequisite
Before adding and validating a domain in CertCentral, you must first add the organization you want to associate the domain with to your account. Then, that organization appears in the Organization menu when adding a new domain. Learn how to add an organization to CertCentral.
DV certificates don't support domain prevalidation
DigiCert DV certificates don't support domain prevalidation. Therefore, you must validate the domains on your DV certificate as part of the certificate issuance process each time you order a certificate. See Validating the domains on a DV TLS/SSL certificate order.
Supported DCV methods for domain prevalidation
DCV type | DCV methods | Resources |
|---|---|---|
Email-based |
| |
DNS-based |
| |
Website-based |
| |