Whenever we raise an SSL certificate for the Spectrum OneClick , the Security team asks if 

"On the OneClick server in the '/.well-known/pki-validation' directory, put the attached file 'domaincontrol.txt' (http://OneClick/.well-known/pki-validation/domaincontrol.txt) containing the code."

Can we do this setting in our Tomcat for the enhanced security?

Release : 10.4.x / 21.2.x

Component : OneClick

Engineering has confirmed that you can create the folders ".well-known/pki-validation/" under $SPECROOT/tomcat/webapps directory and then add the domaincontrol.txt file and this will work.

For further information on Domain Control Validation

https://www.ssls.com/knowledgebase/how-can-i-complete-the-domain-control-validation-for-my-ssl-certificate/#http