Validate domains using DNS validation methods
Use DNS validation to demonstrate control over a domain by adding a DigiCert-generated random value to the domain's DNS records. DigiCert validates the domain when it detects the DNS record containing the correct random value.
DNS validation does not require access to the domain's web server or email infrastructure. It is the recommended approach for most environments.
DigiCert supports the following DNS validation methods:
Add and validate a domain using DNS TXT record
Add and validate a domain using DNS CNAME record
Before you begin
Before using DNS validation, confirm the following:
You have access to the domain's DNS zone
You can create or modify DNS TXT or CNAME records for the domain
You have at least one organization in your CertCentral account and the domain is assigned to it
For OV, EV, Private TLS/SSL, and Secure Email certificates, the organization is submitted for organization validation before you add the domain