Skip to main content

DNS CNAME 유효성 검사 방법을 사용하여 도메인 제어 확인

DNS CNAME 레코드로 도메인에 대한 제어를 증명

Use these instructions to validate a domain using the DNS CNAME DCV method. In the domains DNS as a CNAME record, add _dnsauth in the hostname field. Then, add [random_value].dcv.digicert.com to the target host field, to point the random value and domain to DigiCert at dcv.digicert.com.

TLS/SSL 인증서 주문의 상태를 확인한 후에 DNS CNAME 레코드 DCV 방법을 사용하여 주문에 포함된 도메인에 대한 제어를 증명합니다. 자세한 정보는 SSL 인증서 주문에 포함된 도메인에 대한 제어를 증명을 참조하십시오.

Before you begin

For faster certificate issuance, validate domains before adding them to your organization valudation (OV) and extended validation (EV) TLS certificate orders. To learn more about domain prevalidation, see Supported DCV methods for validating domains in your CertCentral account.

단계 1: 보류 중 주문의 상태를 확인

  1. CertCentral 계정에서 주문의 주문 번호 세부 정보 페이지로 갑니다.

    1. In the left main menu, go to Certificates > Orders.

    2. On the Orders page, in the Order # column, select the certificate's order number link.

    3. For CertCentral Subscription accounts, the steps to access the Order # detail page are different.

      1. In the left menu, go to My Digital Trust Products > Certificates.

      2. On the Certificates page, in the Order # column, select the certificate's order number link.

  2. 주문 번호 세부 정보 페이지의 주문 상태 섹션에서 주문의 발급 상태(주문이 도메인 또는 조직 유효성 검사 완료를 대기 중입니까?)를 확인합니다.

    Once validation is finished, the Certificate status section no longer appears on the Order # details page.

  3. Under What do you need to do, select the domain's link you want to validate.

  4. In the Prove control over domain window, in the Domain control validation (DCV) method menu, select DNS CNAME Record and then select Save.

  5. Under 2. Add the DigiCert provided token to your CNAME record, in the Order token box, copy the DigiCert-provided random value.

    The random value expires in 30 days.

  6. Use one of these options to create your DNS CNAME records:

    1. Option 1 (preferred): Create the DNS CNAME record with the static prefix _dnsauth

      1. Go to your DNS provider’s site and create a new CNAME record.

      2. In the hostname field (or equivalent), enter _dnsauth.

      3. In the record type field (or equivalent), select CNAME.

      4. In the target host field (or equivalent), enter [random_value].dcv.digicert.com to point the CNAME record to dcv.digicert.com.

      5. Select a Time-to-Live (TTL) value or use your DNS provider's default value.

      6. Save the record.

    2. Option 2: Create the DNS CNAME record with the [random_value] prefix

      중요

      On October 28, 2025, DigiCert is ending support for the [random_value] prefix DNS CNAME record configuration. To learn more about this change, see the October 28 change log entry.

      1. Go to your DNS provider’s site and create a new CNAME record.

      2. In the hostname field (or equivalent), enter the random value copied from your CertCentral account.

      3. In the record type field (or equivalent), select CNAME.

      4. In the target host field (or equivalent), enter dcv.digicert.com to point the CNAME record to dcv.digicert.com.

      5. Select a Time-to-Live (TTL) value or use your DNS provider's default value.

      6. Save the record.

  7. Complete domain validation.

    1. In CertCentral, go to the certificate's Order # details page.

      1. In the left menu, go to Certificate > Orders.

      2. On the Orders page, in the Order # column, select the certificate's order number link.

      For CertCentral Subscription accounts:

      1. In the left menu, go to My Digital Trust Products > Certificates.

      2. On the Certificates page, in the Order # column, select the certificate's order number link.

    2. On the Order # details page, in the Certificate status section, under What do you need to do, select the domain link.

    3. In the Prove control over domain window, under 5. Complete domain validation, select Check record.

이 섹션의 내용: