Domain Validated SSL certificates are the most basic and easiest to validate using a single step to verify the person or organization who owns the registered domain.

To complete the validation, the domain owner must prove that they own the domain that was submitted with the order.

The easiest and preferred method is completing the verification with email-based authentication. Using this preferred method, we will send an email to the WHOIS registrar email address asking you to verify that you purchased a DV certificate. Once you positively respond to our email, the requirement is considered satisfied and the certificate can be issued within minutes of a completed order.

As an alternative to the WHOIS registered email, we can send the authentication email to one of five pre-approved email addresses associated with the website domain. The five pre-approved addresses are:

• Admin@name-of-site.com
• Administrator@name-of-site.com
• Webmaster@name-of-site.com
• Hostmaster@name-of-site.com
• Postmaster@name-of-site.com

If the email Domain Validation does not work for your particular situation, there are alternative methods.

• File-Based Authentication – we will provide you with a text file that you will need to upload to the root directory of your website. We will then verify your website via HTTP or HTTPS.
• CNAME-Based Authentication – we will provide you with two unique hash values (these are MD5 and SHA1). You, in turn, must enter them in your CNAME DNS record.

Organization Validated or OV SSL certificates require more validation than Domain Validated (DV) certificates and provide more trust. With an OV certificate, we confirm the business associated with the domain name is registered and legitimate by checking details such as the company name, location, address, and incorporation or registration information. This makes the OV certificate a more suitable option for public-facing websites that represent companies or organizations. OV's are usually used by corporations, governments and other entities that want to provide an extra layer of confidence to their website visitors. OV requirements for an organization include:

• Domain Ownership/Authentication
• Organization Authentication
• Locality Presence
• Telephone Verification (Organization phone number found on an online database)
• Final Verification phone call

For legitimate organizations, this process goes smoothly and quickly. Remember, an OV certificate differentiates legitimate businesses from the pretenders—including scammers and hackers.

An OV SSL certificate for an individual requires the identity and address to be validated on the certificate. Individual identity is verified by the applicant providing one of the following documents:

• Legible copy of a government-issued photo ID such as a valid driver's license, passport, military ID, or National ID
• Copy of a recent major utility bill (i.e. power bill, water bill, etc.)
• Copy of a bank or credit card statement

The Extended Validation SSL certificate has very strict industry guidelines that our validation specialists make as simple as possible with minimal action required from you. This level of security is recommended for sites that obtain personal information from users, such as eCommerce businesses.

The validation of your organization can be completed using 1 of 3 methods:

• DCV email
• CNAME
• HTTP(S) challenge

Anticipate a telephone call to the main business phone number listed on the subscriber agreement to verify the signature, authority to sign and signer's title. If any additional actions are required, a validation specialist will reach out to you via email. The telephone call to verify the authenticity of the order and signer listed on subscriber agreement can not be made to a direct phone number or cell phone unless the number can be validated.

Tips When Validating

• Sole proprietorship / sole trader and some partnerships require a principal individual in the organization to be verified.
• All EV certificates must have the legal name. If a tradename/DBA is verified, the certificate will be listed with the tradename and legal name.
• In the case of a sole trader the legal name is the owner/principal name.
• No certificate can be issued to the tradename/DBA name only.
• Use the address where the organization conducts business. Do not use PO Box, Care of, mail stop/forwarding, virtual office or a registered agent address.
• If the Validation Specialist is not able to verify your organization, you will be contacted with options on how to resolve any outstanding issues.