SSL certificates with domain verification, or as some call them, entry-level certificates are the most common in the world, and this is not surprising, because the speed of issuing such certificates varies from 2-10 minutes, depending on the brand. To obtain such a certificate, no documents are required, the whole process is extremely simple, you need to confirm ownership of the domain, and for this there are 3 ways, one main and two alternative.
Entry-level SSL certificates with domain verification are one of the fastest-issued certificate types because Do not require any documents. We recommend these certificates for small sites and small projects, when you do not need a lot of trust from clients and visitors of the site, project. With such a certificate, static security logos are more often used, however there are some that offer dynamic ones, for example: Thawte SSL 123, Sectigo SSL Certificate.
Validation methods
Here is a short overview of available verification methods for Domain Validation certs
Validation via Email (DCV Email)
This method is described on many sites and blogs, the whole point is that the certification authority will send you a verification letter in which there will be a link to confirm ownership of the domain. Such a letter can be sent either to the e-mail specified in the Whois of your domain, or to one of the golden five: admin @, administrator @, hostmaster @, postmaster @, webmaster
Validation via DNS CNAME
A fairly popular method, for those who may not have a mail server configured, and whois e-mails are closed by private registration. The bottom line is simple, you have to make a special entry in your DNS, and the certification authority will check it. The method is fully automatic
Validation Using a Hash File (HTTP CSR Hash)
An even simpler method is that you will be provided with a special .txt file that you must upload to your server, the certification authority will verify its availability and a certificate will be issued. The method is fully automatic.
