From August 19th 2020, SECTIGO issues SSL certificates with a maximum lifetime of 398 days (13 months) as specified by CA/Browser consortium. SSL certificates with a longer lifetime must be re-issued annually (free of charge). You'll receive reminders via e-mail. SSL certificates issued before August 19th 2020 remain valid until their planned expiry date. Code Signing & S/MIME certificates are not affected and remain valid until their planned expiry date.

How do i create /.well-known/pki-validation/... ?

For File Based Authentication, please create a folder structure "/.well-known/pki-validation/" under the root directory. Som (S)FTP programs won't be displaying folders beginning with a dot by default, it might be necessary to enable the "show hidden files" setting.

Under Windows/IIS you cannot create folder names including the dot in the name, instead you have to create a virtual directory, see also: https://msdn.microsoft.com/en-US/library/bb763173.aspx.

In Mac OS (OSX) Server the .well-known functionality needs to be enabled inside Apache configuration. For details see https://www.interssl.com/en/knowledgebase.php?action=displayarticle&id=774

Then create the file using following details or download the Authentication file by clicking the "Download Auth File" button and place it in the "/.well-known/pki-validation/" of the HTTP server, like so: http://www.example.com/.well-known/pki-validation/<filename>.txt

It may take some time for file to be automatically validated and cert to be issued by Certificate Authority

Was this answer helpful?

 Print this Article

Also Read

How long does it take until HTTP based authentication is verified?

Typically HTTP-based authentication will be done within a couple of minutes. If you think the...

Wie erstelle ich einen CSR (Certificate Signing Request) in Microsoft IIS ?

Für Microsoft IIS und Exchange Console empfehlen wir NICHT unseren Online Generator zu nutzen...

Issueing SSL certificates for internal server names (e.g. .local) - Microsoft Exchange Server, DNS, etc.

As per July 2012 SSL certificates for local server names will not longer be issued, accoring to...

What is PRE-SIGN FAILED? What is a CAA record? - DNS Certification Authority Authorization (CAA) Resource Record

The Certification Authority Authorization (CAA) DNS Resource Record allows a DNS domain name...

How to obtain a SSL certificate? How does e-mail authentication work?

After ordering a SSL certificate with InterSSL, you have to place a CSR (Certificate Signing...