Skip to main content

Add and validate a domain using constructed email addresses

Add a domain to CertCentral and validate it by sending DigiCert authorization emails to standard administrative email addresses for the domain. DigiCert sends the authorization email to the following constructed addresses:

  • admin@yourdomain.com

  • administrator@yourdomain.com

  • webmaster@yourdomain.com

  • hostmaster@yourdomain.com

  • postmaster@yourdomain.com

Before you begin

  • Complete the one-time CertCentral Settings configuration for this method. See See Validate domains using email validation methods.

  • At least one of the constructed email addresses must exist and be monitored.

  • An MX record must exist for the domain. DigiCert verifies that an MX record exists before sending the approval email. If no MX record exists, use another supported DCV method.

  • At least one organization must exist in your CertCentral account before adding a domain. See Add an organization to CertCentral.

Step I: Set up an MX record for the domain

To send a DCV approval email to a constructed address, DigiCert must verify that an MX record exists in the domain's DNS. A valid MX record identifies the mail server responsible for receiving emails for that domain.

Set up an MX record for yourdomain.com at your DNS provider. If DigiCert cannot find an MX record for the domain, you must use another supported DCV method.

Step II: Add the domain and submit for validation

  1. In the CertCentral main menu,

    • For Enterprise, Partner, or Legacy accounts: go to Certificates > Domains.

    • For Subscription accounts: go to Validation > Domains.

  2. On the Domains page, select New Domain.

  3. On the New Domain page, under Domain Details, enter the following:

    • Domain Name: Enter the domain you want to validate.

    • Organization: Select the organization to assign the domain to.

  4. Under Domain control validation (DCV) method, select Verification Email.

  5. In the DCV Email Language menu, select the language for the confirmation email.

  6. Select Choose address and in the Choose address window, select the email addresses you want the confirmation email sent to.

  7. Select Submit for validation.

DigiCert sends the verification email from no-reply@digitalcertvalidation.com to the addresses you selected. The domain is validated when the email recipient selects the link in the email and follows the instructions on the domain approval page.

Common configuration issues

  • No MX record exists for the domain. An MX record must exist before DigiCert can send the approval email.

  • None of the constructed email addresses exist

  • Email security tools quarantine the authorization message. Add digitalcertvalidation.com to your allowlist.

If email validation fails repeatedly, use a DNS-based or HTTP-based validation method instead.

Related topics

Validate domains using DNS validation methods as an alternative when email access is limited or DNS records are available

What's next

Validate domains using website validation methods to use a file-based approach when DNS or email access is limited

In questa sezione: