If you request a domain to be used in publicly-trusted certificates issued by QuoVadis you are presented with several choices to validate control of the domain. This may apply to SSL/TLS certificates, or end user certificates including email addresses, such as S/MIME certificates.
BR section 3.2.2.4.18 describes a process using a Random Value published in an Agreed-Upon Change to Website using the requested domain to demonstrate control. You will be provided a Random Value by QuoVadis in the following form:
QuoVadis=00000000-0000-0000-0000-000000000000
Note: Replace the 00000000-0000-0000-0000-000000000000 with the Random Value you were provided.
To verify control of the Domain, please add the RandomValue in a file in the .well-known/pki-validation/fileauth.txt directory of your webspace:
http://example.com/.well-known/pki-validation/fileauth.txt or http://www.example.com/.well-known/pki-validation/fileauth.txt
Note: The Random Value must be in a txt file named “fileauth.txt”. The address must not include the Random Value itself.
The Random Value is valid for 30 days, and validation must reoccur according to the applicable requirements of the certificate type (detailed in Section 4.2.1 of the Baseline Requirements or Section 11.14.3 of the EV Guidelines).