Table of Contents
DCV (Domain Control Validation)
For security reasons, is necessary to verify that you have the full agreement of the domain's owner to use the SSL certificate for the domain.
If you have requested an SSL certificate for a domain that you don't control (as owner, admin, or tech contact), you will be offered three validation methods right after you submit your CSR:
Validation by DNS
Validation by DNS record implies that you have access to the DNS zone file of your domain (whether or not at Gandi), and can add a CNAME record to it.
If you opt for this method, you will need to add a special CNAME record to your domain's DNS zone file.
The record to be inserted into the zone will be visible from the certificate's order status from your Orders in Progress page (more info). You can see it by hovering your mouse over the icon.
Validation by email
This validation method is simple, though requires that you have a specific email address available for each domain to be validated.
This email address must be created with the user admin@ (ex.: if you want to validate the domain example.com, you must create the email address firstname.lastname@example.org).
To resend the mail, go to your certificate's order status from your Orders in Progress page (more info) and relaunch the sending of the verification emails from there.
Validation by file
This validation method requires that you have access to the web server that hosts the website that the domain will point to.
You are asked to copy a TXT file that contains a verification key, and to place it at the following location(.well-known/pki-validation/filename.txt):
Note that you must replace adapt the URL to match your own address, as well as the “filename”.
To get the file, go to the certificate's order status from your Orders in Progress page (more info).
Comodo will verify the file within 1 hour of the launch of the validation process.