How do I complete Domain Control Validation (DCV)?

Domain Control Validation (DCV) is needed before the Certificate Authority (CA) will issue your SSL Certificate. They need to verify you have admin control of the website you’re looking to encrypt.

You can update your preferred DCV method in the Comodo Order Status panel.

You have three options to complete DCV:

Email Validation

This is the most common way because it’s the fastest and easiest. You’ll receive an email from the Certificate Authority to confirm your domain admin control. 

By regulation rules, the email can only be sent to the email address registered in the Whois database, or to one of the following domain-based emails:

  • admin@
  • administrator@
  • postmaster@
  • webmaster@
  • hostmaster@

Once you activate your SSL Certificate, you will automatically receive the DCV email. If the email was not received, you can request a resend. Use the Comodo Order Status panel. Or, in your Account panel, go to SSL Details, then click Resend Email.

HTTP

This type of DCV validation can be done by uploading a text file into the following directory of your website:

<DOCUMENT_ROOT>/.well-known/pki-validation/

To find the validation file, follow these steps:

1. Activate your SSL Certificate.

2. Go to Purchased certs in your Account.

3. Click the Details button.

4. Click the Save Activation File button.

5. When the file is downloaded, place it into this location: <DOCUMENT_ROOT>/.well-known/pki-validation/

The validation file content should be displayed using this URL:

http://yourdomain.tld/.well-known/pki-validation/filename.txt

Create the ‘.well-known’ folder inside the Document root directory.

Tip: On Windows-based servers, add another dot at the end of the folder name (‘.well-known.’). Otherwise, the server won’t allow you to save it with the name that has a dot at the beginning.

Then create a folder named ‘pki-validation’ inside the ‘.well-known’ folder, and place the validation file into this ‘pki-validation’ folder.

Make sure that the file is publicly accessible so the CA can access it.

Subdomain Validation:

If you have a single-domain or a Wildcard Certificate for a subdomain, it can be validated using:

http://yourdomain.tld/.well-known/pki-validation/filename.txt 

or 

via http://sub.yourdomain.tld/.well-known/pki-validation/filename.txt.

If you have a Multi-Domain Certificate for a subdomain, it must be validated by making the file accessible using:

http://sub.yourdomain.tld/.well-known/pki-validation/filename.txt.

If you have activated the certificate for www.yourdomain.tld, the subdomain must be available via: http://yourdomain.tld/.well-known/pki-validation/filename.txt.

Note: do not alter the content of the file.

If the secure https:// redirect is enabled for the domain, switch validation to HTTPS in your Comodo Order Status panel.

DNS

Feel free to contact our Support Team if you have questions or need help. You can also use Sectigo online order management tool to influence your certificate validation.

For this DCV option, you’ll need to create a CNAME record in the DNS settings of your domain.

Validation using HTTP or DNS methods usually takes about an hour. If it takes longer, check whether the file is accessible publicly or whether the record is still being propagated. You can do this using the convenient new SSL Validation Tool. If you need any help with your DCV, feel free to contact our Support Team: submit a ticket or start a Live Chat by clicking on the round button at the bottom of the page.