How does a CA validate domain ownership?

Certificate authorities verify domain ownership to ensure certificates are issued securely.

Validation Methods

HTTP-01 Validation

SSLcat creates a challenge file in /.well-known/acme-challenge/. The CA accesses the URL to verify.

DNS-01 Validation

Add a specific TXT record to DNS. The CA queries DNS to confirm ownership.

Related FAQ

• How does sslcat request certificates?
• Why are certificates free?