Valued Alibaba Cloud users,
SSL Certificates Service will adjust the file-based verification method for domain ownership verification based on the latest proposal of CA/Browser Forum .
Effective date: September 21, 2021.
- Wildcard domain name: You can no longer use the file-based verification method to
verify the ownership of a wildcard domain name such as *.example.com or *.1.example.com.
If you apply for a certificate that protects a wildcard domain name by using SSL Certificates Service, you can verify the ownership of the wildcard domain name only by adding a DNS record. For more information about how to add a DNS record to prove the ownership of a domain name, see DNS authentication method.
- Single domain name: You can still use the file-based verification method to verify
the ownership of a single domain name. A single domain name can be a primary domain
name such as example.com or be a subdomain name such as www.example.com. The file-based
verification method requires that each single domain name be separately verified.
If you use the file-based verification method to verify the ownership of a primary domain name such as example.com, you must also verify the ownership of each of its subdomain names such as www.example.com. For more information about file-based verification, see File validation method.
References: Domain validation policy changes in 2021
We apologize for the inconvenience that may be caused. If you have questions, submit a ticket to contact us.