파일을 만들어서 사이트에 넣으면 DigiCert는 지정된 URL을 방문하여 임의의 값이 있는 것을 확인합니다. 일반적인 실수를 피하도록 하십시오. 참조: HTTP 실제 증명 DCV 방법의 일반적 실수.
After you've created the file and placed it on your site, DigiCert visits the specified URL to confirm the presence of our random value. Make sure to avoid common mistakes—HTTP Practical Demonstration DCV method common mistakes.
Validate FQDNs only
Only use the HTTP Practical Demonstration DCV method to demonstrate control over fully qualified domain names (FQDNs) exactly as named on the certificate request. To learn more about this policy, visit Domain validation policy changes in 2021.
Use one of the other supported DCV methods, such as email, DNS TXT, and CNAME, to:
Validate wildcard domains (*.example.com)
Include subdomains in the domain validation when validating a higher-level domain.
For example, if you want to cover www.example.com, mail.example.com, and one.example.com when validating the higher-level domain example.com.
Validate IPv4 and IPv6 addresses
Per industry regulations, you must use the HTTP Practical Demonstration DCV method to demonstrate control over IPv4 and IPv6 addresses.
In CertCentral, go to the certificate’s Order # details page.
In the left main menu, go to Certificates > Orders.
On the Orders page, in the Order # column, locate and select the certificate's order number link.
For CertCentral Subscription accounts, the steps to access the Order # detail page are different.
In the left menu, go to My Digital Trust Products > Certificates.
On the Certificates page, in the Order # column, select the certificate's order number link.
On the Order # details page, on the Details tab, in the Certificate status section, under What do you need to do, select the Prove control over domain link.
In the Prove control of your domain window, in the Domain control validation (DCV) method menu, select HTTP Practical Demonstration (File) and then select Save.
Create a .txt file and add the DigiCert-provided random value.
Open a text editor, such as Notepad.
In the Order token box, copy your token and paste the random value in text editor.
Note: The random value expires after 30 days.
Save the .txt file under this name: fileauth.txt.
Create the
/.well-known/pki-validation/directory on your site.For Windows-based servers, the
/.well-knownfolder must be created via command line (mkdir .well-known).Place the fileauth.txt file on your site under
/.well-known/pki-validationThe URL should look something like this:
http://{domain-name}/.well-known/pki-validation/fileauth.txt.Does your DV TLS certificate include multiple domains?
Create the
/.well-known/pki-validation/directories on the domain sites and place your fileauth.txt file on them in the specified locations before you run the check.The "check” will fail if any domain site is missing a fileauth.txt file with the DigiCert-provided random value.
Complete domain validation.
In CertCentral, go to the certificate's Order # details page.
In the left main menu, go to Certificate > Orders.
On the Orders page, in the Order # column, select the certificate's order number link.
For CertCentral Subscription accounts:
In the left menu, go to My Digital Trust Products > Certificates.
On the Certificates page, in the Order # column, select the certificate's order number link.
On the Order # details page, on the Details tab, in the Certificate status section, under What do you need to do, select the Prove control over domain link.
In the Prove control of your domain window, select Check site.