Utiliser la méthode DCV par démonstration HTTP pratique (fichier)
Demonstrate domain control with the HTTP Practical Demonstration domain control validation (DCV) method
Une fois le fichier crée et placé sur votre site, DigiCert y accède via l’URL spécifiée pour vérifier la présence de la valeur aléatoire. Assurez-vous d’éviter les erreurs les plus courantes -- Consultez Erreurs courantes relatives à la méthode DCV par démonstration pratique HTTP.
After you've created the file and placed it on your site, DigiCert visits the specified URL to confirm the presence of our random value. Make sure to avoid common mistakes—HTTP Practical Demonstration DCV method common mistakes.
Before you begin
Validate FQDNs only
Only use the HTTP Practical Demonstration DCV method to demonstrate control over fully qualified domain names (FQDNs) exactly as named on the certificate request. To learn more about this policy, visit Domain validation policy changes in 2021.
Use one of the other supported DCV methods, such as email, DNS TXT, and CNAME, to:
Validate wildcard domains (*.example.com)
Include subdomains in the domain validation when validating a higher-level domain.
For example, if you want to cover www.example.com, mail.example.com, and one.example.com when validating the higher-level domain example.com.
Validate IPv4 and IPv6 addresses
Per industry regulations, you must use the HTTP Practical Demonstration DCV method to demonstrate control over IPv4 and IPv6 addresses.
Use HTTP Practical Demonstration record to demonstrate control over a domain
In CertCentral, go to the certificate’s Order # details page.
In the left main menu, go to Certificates > Orders.
On the Orders page, in the Order # column, locate and select the certificate's order number link.
For CertCentral Subscription accounts, the steps to access the Order # detail page are different.
In the left menu, go to My Digital Trust Products > Certificates.
On the Certificates page, in the Order # column, select the certificate's order number link.
On the Order # details page, on the Details tab, in the Certificate status section, under What do you need to do, select the Prove control over domain link.
In the Prove control of your domain window, in the Domain control validation (DCV) method menu, select HTTP Practical Demonstration (File) and then select Save.
Create a .txt file and add the DigiCert-provided random value.
Open a text editor, such as Notepad.
In the Order token box, copy your token and paste the random value in text editor.
Note: The random value expires after 30 days.
Save the .txt file under this name: fileauth.txt.
Create the
/.well-known/pki-validation/
directory on your site.For Windows-based servers, the
/.well-known
folder must be created via command line (mkdir .well-known
).Place the fileauth.txt file on your site under
/.well-known/pki-validation
The URL should look something like this:
http://{domain-name}/.well-known/pki-validation/fileauth.txt
.Does your DV TLS certificate include multiple domains?
Create the
/.well-known/pki-validation/
directories on the domain sites and place your fileauth.txt file on them in the specified locations before you run the check.The "check” will fail if any domain site is missing a fileauth.txt file with the DigiCert-provided random value.
Complete domain validation.
In CertCentral, go to the certificate's Order # details page.
In the left main menu, go to Certificate > Orders.
On the Orders page, in the Order # column, select the certificate's order number link.
For CertCentral Subscription accounts:
In the left menu, go to My Digital Trust Products > Certificates.
On the Certificates page, in the Order # column, select the certificate's order number link.
On the Order # details page, on the Details tab, in the Certificate status section, under What do you need to do, select the Prove control over domain link.
In the Prove control of your domain window, select Check site.