How to complete HTTP-based validation?
HTTP-based validation (also known as File Authentication) is a method of proving domain ownership by uploading a specific text file to your web server. This is often the best choice if you have access to your site's files via cPanel File Manager or FTP but do not have access to your email or DNS settings.
Step 1: Download the Validation File
Once you activate your SSL and select "HTTP File Upload" as your validation method:
-
Log in to your Nixzoehost Client Area.
-
Go to your SSL Certificates list and click Manage.
-
In the validation section, you will see a link to download a
.txtfile (it will have a filename consisting of random letters and numbers). -
Save this file to your computer.
Step 2: Create the Required Folders
The Certificate Authority (CA) will look for the file at a very specific URL. You must create the following folder structure on your server:
-
Log in to cPanel and open the File Manager.
-
Enter the
public_htmlfolder (the root directory of your website). -
Create a new folder named
.well-known(include the dot at the beginning). -
Inside
.well-known, create another folder namedpki-validation.
Step 3: Upload the File
-
Enter the
pki-validationfolder you just created. -
Click the Upload button in your File Manager and select the
.txtfile you downloaded in Step 1. -
Ensure the file is named exactly as provided (do not rename it).
Step 4: Verify Public Access
Before notifying the CA, check that the file is publicly accessible. Open your browser and type in the following URL (replacing yourdomain.com with your actual domain): http://yourdomain.com/.well-known/pki-validation/FILENAME.txt
-
Success: You see the random string of text inside the file in your browser.
-
Failure: You see a 404 Error or a 403 Forbidden error.
Step 5: Notify the CA
Once you can see the file in your browser, go back to your Nixzoehost SSL Management page and click the Check Validation or Verify button. The CA will scan your site, find the file, and issue your certificateusually within 5 to 15 minutes.
| Issue | Cause | Solution |
| 404 Not Found | Folders are misnamed or in the wrong directory. | Ensure the path is exactly public_html/.well-known/pki-validation/. |
| 403 Forbidden | Folder permissions are too strict. | Set folder permissions to 755 and the .txt file to 644. |
| Redirect Loop | Your site forces HTTPS or a "Coming Soon" page. | Temporarily disable any redirects or password protection so the CA "bot" can reach the file. |
| Wildcard SSL | You are using HTTP for a Wildcard. | Note: HTTP validation cannot be used for Wildcard SSLs. You must use DNS CNAME instead. |