Skip to main content

Use the HTTP Practical Demonstration (File) DCV method

Use these instructions to check the status of your DV certificate order. Then use the HTTP Practical Demonstration DCV method to demonstrate control over the domains on the order.

The HTTP Practical Demonstration DCV method allows you to demonstrate control over your domain by hosting a .txt file with a DigiCert-generated random value (provided for the domain in your CertCentral account) at a predetermined location on your website.

Once the file is created and placed on your site, DigiCert visits the specified URL to confirm the presence of your random value. Make sure to avoid common mistakes See HTTP Practical Demonstration DCV method common mistakes.

Important

Validation for wildcard domains and subdomains: DigiCert recommends the DNS TXT and Email to DNS TXT contact methods to show control over an entire domain space (for example, all subdomains under *.example.com or example.com).

Industry policy no longer allows the use of file-based methods for wildcard certificates and limits the effective use of the method for subdomains. For more on this policy change, see Domain validation policy changes in 2021.

  1. In your CertCentral account, in the sidebar menu, click Certificates > Orders.

  2. On the Orders page, use the filters and advanced search features to locate the pending DV certificate order.

  3. In the Order # column for the pending certificate order, click the order number link.

  4. On the Order # details page, in the Order Status section, check the order's validation status (is the order waiting on domain validation to be completed?).

  5. Under You Need To, click the Prove Control Over Domain link.

  6. In the Prove control of your domain window, in the DCV verification method drop-down list, select HTTP Practical Demonstration (File).

  7. Download your fileauth.txt file

    Click the Download fileauth.txt link.

    If your order includes multiple domains, use this fileauth.txt file for each domain in the certificate order.

    Note

    The random value in the fileauth.txt file expires after 30 days.

  8. Create the [yourdomain.com]/.well-known/pki-validation/ directory

    Create the .well-known/pki-validation/ directory on your site and place your fileauth.txt file in it. You need to make the file available at [yourdomain]/.well-known/pki-validation/fileauth.txt

    Notice

    Windows-based servers: The .well-known folder must be created via command line (mkdir .well-known).

    Warning

    Does your order include multiple domains?

    Create the .well-known/pki-validation/ directories on the domains and place your fileauth.txt file on them in the specified locations before you run the check. If any domain sites are missing a fileauth.txt file with the DigiCert-provided random value, the "check” will fail.

  9. Verify the fileauth.txt file

    1. In your CertCentral account, in the sidebar menu, click Certificate > Orders.

    2. On the Orders page, in the Order # column of the DV certificate order, click the order number link.

    3. On the Order # details page, in the Order Status section, under You Need To, click the Prove control over domain link.

    4. In the Prove control of your domain window, click Check.

  10. Congratulations! You have completed the domain validation for the domain.