DNS CNAME BASED DOMAIN CONTROL VALIDATION (DCV)

 

DNS CNAME based DCV requires that a unique CNAME record is created for each FQDN to be included in your certificate.

For example, if a single domain certificate is to be issued to FQDN “secure.wildcardssl.dk” then the following CNAME record must be created with your DNS provider.

HOST VALUE

_ MD5 hash or CSR .secure.wildcardssl.dk.

 

TARGET VALUE

SHA-256 hash or CSR.comodoca.com

The MD5 and the SHA-256 hash values are provided to you in an order confirmation.

If you are ordering a SAN/UC certificate, separate CNAME records must be created for each FQDN.

Note: Be aware that your SHA-256 hash may not fit in a single DNS label because it is too long. The SHA-256 hash should therefore be split into two labels, each 32 characters long.

 

When your CNAME record(s) have been created, please send an email to vetting@trustzone.com, and we will speed up the CNAME based DCV.

 

Last updated: July 10, 2018