August 16, 2022
How can i complete the domain control validation

How can i complete the domain control validation

An SSL certificate applicant must confirm domain ownership rights before issuing an SSL certificate. DCV stands for domain control validation. The following methods of DCV will be provided to you during certificate activation:

How can i complete the domain control validation
How can i complete the domain control validation
  • Adding CNAME records
  • and uploading the validation file
  • Email sent

Add CNAME record

CNAME records are at your domain’s DNS settings as part of this validation method.

In the SSL Details page of your account, you’ll find instructions on completing the DCV method, as well as the CNAME values you need.

User can be view CNAME record values by clicking on getting Record.

It should be noted that some DNS systems (including the Namecheap system) add the domain name to the value submitted during record creation. Ensure your domain name is not duplicate in the values. When adding the Host value for your domain’s validation record, remove the “example.com” part of the provided Host value if your domain uses Namecheap Basic nameservers or PremiumDNS. Copy the Host and Target values and paste them into the corresponding fields in your DNS provider account. Set the minimum possible TTL value.

The DNS record for the bare domain (without www.) will verify the domain and its subdomains included in the certificate if you activate a Multi-domain certificate. Make sure, all domains/subdomains included in the certificate are verified to be issue.

On the SSL details page, click “Get a CNAME record” after the correct values have been set up.

Click ‘Edit Methods’ on the new page.

You can speed up domain control validation by clicking Save Changes/Retry Alt DCV in the pop-up window.

If, however, you activate a single-domain certificate for a subdomain, you must set a DNS record directly for the bare domain.

Upload a validation file

User can upload activation file to your website’s hosting server in this DCV method.

Wildcard SSLs cannot import for file uploading.

An example of a validating TXT file is AN2D4C5H7F01823KRIDHJ.txt, whose name contains a combination of numbers and letters.

Uploading a file with a unique name or content is not require.

Upon completing the activation process, you’ll be directed to the SSL Details page in your Namecheap account, where you’ll find instructions and a link to the Edit methods page where you can download the validation file.

The file be in the ‘.well-known’ folder in the PKI-validation subfolder.

You can now access the validation file by the following URL: http://yourdomainname.com/.well-known/pki-validation/AN2D4C5H7F01823KRIDHJ.txt, where ‘yourdomainname.com’ is the domain name in the certificate, and ‘AN2D4C5H7F01823KRIDHJ.txt’ is the exact file name you download from Namecheap without making any changes.

Receive an email

You must have a domain-related email address from the suggested list to use this option. During the SSL activation process, the exact email address used for DCV will be selected.

For CA/B forum approval emails, you can only use a domain Whois record contact email or one of the following domain-related generic email addresses:

  • Administrator@example.com
  • admin@example.com
  • postmaster@example.com
  • webmaster@example.com
  • hostmaster@example.com

If the Whois privacy protection service is ON, the Whois email address looks like 00222eeef898g6245jbkhdshml42@your_whois_privacy.service.

The Certificate Authority will email the email address you selected once you’ve completed the SSL activation process.

During activation, if the Whois record email does not appear in the list of possible email addresses, this means that the Certificate Authority was unable to retrieve the Whois record for your domain from your CSR code. For domains with such TLDs as .ca, .br, .uk, .au, etc., this is quite common. If you want to validate your certificate with an email from Whois, you can select any email from the list for activation. If you have completed activation, please submit a request to Sectigo’s ticketing system to change the validation email, referencing your Sectigo Order Number. The CA order ID appears under SSL Details as ‘CA order ID.’

You will receive an email once the activation is complete. Your certificate domain ownership rights must be confirmed by copying the validation code from the approval email, clicking the link, pasting the code in the corresponding field on the new page, and clicking Next.

Copy the code from the email and click Next.

That’s it!

Leave a Reply

Your email address will not be published.