Domain Control Validation (DCV) is a mandatory step in the SSL certificate issuance process. It confirms that you own or control the domain you’re requesting the certificate for. Without successful validation, your Certificate Authority (CA) cannot issue your SSL certificate.
This guide explains the available validation methods, how to complete each one, and what to do if your validation is delayed, and help you complete Domain Control Validation (DCV) for your SSL certificate so it can be issued successfully.

What This Means
Domain Control Validation (DCV) is the process used by a Certificate Authority (CA) to verify that you’re authorised to request an SSL certificate for a domain.
Every publicly trusted SSL certificate requires DCV before it can be issued.
Depending on your SSL certificate and Certificate Authority, you may be able to validate your domain using one of these methods:
- Email Validation – Approve the request through a verification email.
- DNS Validation – Add a verification TXT record to your domain’s DNS zone.
- HTTP File Validation – Upload a verification file to your website.
Your Certificate Authority will tell you which validation methods are available for your certificate before completing the verification process.
Steps to Complete Domain Control Validation (DVC) for Your SSL Certificate
Step 1: Locate Your SSL Certificate Order
After purchasing or renewing your SSL certificate, locate your order details.
Your Certificate Authority will begin the Domain Control Validation process and provide instructions for completing validation.
Step 2: Check for the Validation Request
Most Certificate Authorities send validation instructions shortly after the SSL order is placed.
Check:
- Your inbox
- Spam or Junk folders
- Quarantine folders (for business email systems)
The email will contain instructions for completing one or more DCV methods, thus allowing you to move forward in the process.
Step 3: Choose Your Validation Method
Your Certificate Authority may offer one or more of the following validation methods.
Option 1: Email Validation
Email validation is often the quickest option.
You’ll receive an email containing a verification link or approval instructions before you can verify.
Simply:
- Open the email.
- Follow the verification link.
- Approve the validation request.
Once completed, the Certificate Authority will continue issuing your SSL certificate.
Option 2: DNS Validation (TXT Record)
DNS validation requires you to add a TXT record to your domain’s DNS zone.
Your Certificate Authority will provide:
- The record name (Host)
- The TXT value
- Any additional instructions
Once you have added the record:
- Save your DNS changes.
- Allow time for DNS propagation.
Option 3: HTTP File Validation
Some Certificate Authorities allow validation by uploading a verification file to your website once this has been verified.
You’ll receive:
- A verification file
- The required upload location (typically /.well-known/pki-validation/)
Uploading the file exactly as instructed using your hosting File Manager or FTP client matters.
Once the file is publicly accessible, the Certificate Authority will verify it automatically.
Step 4: Wait for Validation
After completing your chosen validation method:
- Your SSL certificate is issued automatically once validation succeeds.
Most validations complete within minutes, although DNS-based validation can sometimes take longer due to DNS propagation.
Step 5: Verify Your SSL Certificate Status
Once validation is complete:
- Confirm that your SSL certificate has been issued.
- Install the certificate if manual installation is required.
- Test your website using https://.
Important Things to Know
- Domain Control Validation is mandatory for all publicly trusted SSL certificates before they can work.
- DNS validation can take longer if DNS changes are still propagating.
- HTTP validation requires the verification file to remain publicly accessible until validation is complete.
- Enter DNS TXT records exactly as provided because even small mistakes can cause validation to fail.
Before You Move On
Before assuming validation has failed, confirm that:
- You’re using the correct validation method.
- Any DNS TXT records have been entered exactly as provided before saving.
- DNS changes have had enough time to propagate.
- The verification email hasn’t been filtered into Spam or Junk.
- The HTTP validation file has been uploaded to the correct location.
- Your domain resolves correctly.
Common Mistakes to Avoid
- Entering an incorrect DNS TXT record before saving.
- Removing the DNS record before validation is complete.
- Uploading the HTTP validation file to the wrong directory.
- Ignoring the validation email because it was delivered to Spam.
- Expecting DNS validation to complete immediately after adding the TXT record.
If This Didn’t Work
If your SSL certificate hasn’t been issued after completing Domain Control Validation, please gather the following before contacting 1-grid Support:
- Your domain name
- Your SSL certificate order number (if available)
- The validation method you’re using
- A screenshot of any validation error
- The DNS TXT record you added (if using DNS validation)
- The validation email (if applicable)
This information will help us investigate your validation status more quickly.
Related Articles
- Understanding SSL Validation Processes
- How to Generate a Certificate Signing Request (CSR)
- Can You Reuse an Existing CSR When Renewing Your SSL Certificate?
- Understanding SSL Certificates
- Redirecting Your Website to HTTPS
- Troubleshoot Common SSL Certificate Errors
FAQs
What is Domain Control Validation?
Domain Control Validation (DCV) is the process used to verify that you own or control the domain before an SSL certificate can be issued.
How long does Domain Control Validation take?
Email and HTTP validation often complete within minutes. DNS validation may take longer depending on DNS propagation.
Which validation method is the fastest?
Email validation is usually the quickest, provided you have access to the authorised email address.
Can I change my validation method?
In many cases, yes. The available options depend on your Certificate Authority and SSL certificate type.
Why hasn’t my SSL certificate been issued yet?
The most common reasons include incomplete validation, DNS propagation delays, incorrect DNS records, inaccessible HTTP validation files, or unapproved validation emails.
Do I need to complete Domain Control Validation every time I renew my SSL certificate?
In most cases, yes. Certificate Authorities typically require domain validation each time a publicly trusted SSL certificate is issued or renewed.
Empowering Insight

Domain Control Validation is designed to protect website owners and visitors by ensuring SSL certificates are only issued to authorised domain owners. Completing the validation accurately the first time helps avoid delays and gets your website secured faster.
Need Additional Support?
If you’ve completed the validation steps and your SSL certificate is still pending, our Support Team is here to help.
Contact us with your domain name, SSL order details, validation method, and any error messages or screenshots ready. This will help us investigate your request as quickly as possible.