Perform domain control validation (DCV)
Before DigiCert issues a certificate, you must demonstrate control over the fully qualified domain names or IP addresses included in your request. This process is called domain control validation (DCV).
Per TLS certificate baseline requirements, certificate authorities must verify requester control of all certificate domains and IP addresses before issuance.
Complete DCV in one of the following ways:
Before ordering certificates using domain pre-validation
During a pending certificate order
As part of an Automated Certificate Management Environment (ACME) workflow
DigiCert supports the following DCV methods:
Email validation
DNS TXT and CNAME records
HTTP Practical Demonstration
ACME HTTP-01 and DNS-01 challenges
Notice
Domain validation reuse rules vary by certificate type. Organization-validated (OV) and extended validation (EV) certificates support reuse within the allowed period. Domain validation (DV) certificates require validation during each order and don't support reuse.
This chapter explains how to:
Select a supported domain control validation method
Validate domains before or during certificate orders
Complete validation for OV, EV, and DV certificates
Resolve common configuration issues that prevent validation