On November 15, 2021, all Certification Authorities, based on the CA/B Forum decision, will make the following changes to the domain validation rules for SSL certificates:
1. Wildcard certificates and Wildcard SAN names in multi-domain certificates abolish file-based validation (HTTP/S based DCV), domain validation will be possible either via email or DNS record.
2. For regular domain names and sub-domain SANs, the file must be placed exactly on the domain for which the certificate is requested, e.g:
if the certificate is requested at sub.domain.com, the file must be placed at sub.domain.com.
The changes apply to all new certificates as well as reissuance and renewal of old certificates. Already issued certificates do not need to be re-issued specifically.