Instructions for authorizing a domain using DNS TXT as the DCV method

This validation method requires you to create a unique TXT record for the domain. In this TXT record, you add the random value verification token for the domain—provided by your Support representative. When the Support representative does a search for TXT records associated with the domain, they can find a record where the record’s value includes the verification token (random value).

How to Use DNS TXT as the DCV Method for a Domain?

Use this instruction if you need us to validate a domain using the DNS TXT DCV method.

  1. Your Authentication support representative will provide you with the following items:
    1. A DNS TXT Entry (base domain or _dnsauth):
      1. [domain name] (e.g., example.com).
      2. _dnsauth.[domain name] (e.g., _dnsauth.example.com).
    2. A generated token (e.g., randomnumbersandletters) that you need to add to your TXT record.
  2. Add Token to DNS TXT Record.
    1. Go to your DNS provider’s site and create a new TXT record.
    2. Paste your verification code into a new TXT record in the TXT Value field.
    3. Host field
      1. Base Domain (e.g., example.com)
        Leave the Host field blank, or use the @ symbol (depending on your DNS provider requirements).
      2. _dnsauth.[domain name]
        In the Host field, enter _dnsauth.
    4. Make sure the TLL is set to default or 3600.
    5. Save the record.
    6. Ask your Authentication support representative to check your DNS TXT Record.
      If everything is set up correctly, your DCV will be completed.

If you’re still having problems in validating your domain or need a new DCV resent, Please Contact Support.

For SSL Partner Center clients please submit a support ticket by performing the following.

  1. Within your SSL Partner Center Dashboard, click ​Support​ > ​Submit a Ticket.
  2. In the Submit Ticket page Related To drop down select under Order Support > Authentication.
  3. Supply any helpful information related to the issue.
  4. Click Submit.

Other methods of validation:

  • File Domain Control Validation:
    This validation method requires you demonstrate control over the website content for the domain by making a file available at the file location—provided by your support representative.  When a CA does a search for the specified URL on that domain, they can look for and confirm the presence of our verification token.
    See Authentication/Orders Support: Domain Pre-Validation – File Domain Control Validation.
  • Email Validation (Default DCV Method)
    By default, when you add domains to your account for pre-validation, Some CA’s will send two sets of DCV emails: WHOIS-based and Constructed. To demonstrate control over the domain, an email recipient follows the instructions in a confirmation email sent for the domain. The confirmation process consists of visiting the link provided in the email and following the instructions on the page.
    See Authentication/Orders Support: Domain Pre-Validation – Email Validation.


LoadingAdd to favorites

About SSLSupportDesk:

SSLSupportDesk is part of Acmetek who is a trusted advisor of security solutions and services. They provide comprehensive security solutions that include Encryption & Authentication (SSL), Endpoint Protection, Multi-factor Authentication, PKI/Digital Signing Certificates, DDOS, WAF and Malware Removal. If you are looking for security look no further. Acmetek has it all covered!

Contact an SSL Specialist to get a consultation on the Website Security Solutions that can fit your needs.

Become a Partner and create additional revenue stream while the heavy lifting for you.