- If I buy a Domain Validated (DV) SSL Certificate, which document(s) do I need to provide?
You do not need to provide any documentation in order to purchase a Domain Validated (DV) certificate. All you will need to do is confirm that you own the domain you wish to cover, either through a simple email or file-based authentication.
- If I buy an Organization Validated (OV) SSL Certificate, which document(s) do I need to provide?
Organization Validated (OV) verification requires checking your business registration. If the Certificate Authority (CA) can verify this information using online government databases, no additional documents will be required. However, if the online filings are not available or inaccurate or not up to date, the CA may request additional official government registration documents, which vary on a case-by-case basis. A Dun & Bradstreet listing can usually satisfy most of the requirements for an OV certificate.
- If I buy an Extended Validation (EV) SSL Certificate, which document(s) do I need to provide?
EV certificates require a more stringent verification process than OV certificates. To understand the basis of this procedure, please refer to the above question about OV certificate verification. Please note that EV certificates require you to complete a few extra steps, including proving both physical and operational existence as well as completing a simple telephone call with the Certificate Authority (CA) directly.
- If I buy a Code Signing Certificate, which document(s) do I need to provide?
During the code signing enrollment process, CA will collect information about your organization for authentication. The validation process may take a few hours or several days, depending on the information you provide and how easily it can be verified.
- I would like to change some information for my Domain Control Validation email (DCV).
If the common name needs to be changed, the only way to do so is by cancelling and reordering the certificate.
- My File Authentication file has been uploaded to the wrong directory. What should I do?
Please upload your file to the correct directory. To make sure the authorization is successful make sure the file is viewable at both yourdomain.com/filepath and subdomain.yourdomain.com/filepath.
- Symantec DV Certificates.
You can switch your method of Domain Control validation from file-based to email-based for any SSL product that we provide. You can switch from email-based to file-based only for Comodo products.
- COMODO DV/OV/EV Certificates.
The File URL path will be http or https://www.yourdomain.com/.well-known/pki-validation/fileauth.txt. For the File Name, the user will need to create “.txt” as the unique file name. This random string will be the MD5 Hash Values from your CSR. User will need to create the text file using this random file name and include the random string value within the file is the SHA1 Hash Value from your CSR. It is important the additional text “comodoca.com” is included as a separate line under the SHA1 random strings. The File URL path will be http or https://www.yourdomain.com/.txt
- How can I reschedule the phone verification call?
In order to reschedule this, please contact your SSL provider and provide them with your availability. Please note, not all telephone numbers are suitable. The number must be verified by the Certificate Authority (CA), so please confirm the number that the CA will be calling.
- My verified phone number is outdated, what should I do?
Please contact your SSL provider and confirm what source the Certificate Authority (CA) pulled the telephone number from and then seek the proper method of updating that number or creating a new listing. Your provider should be able to advise you on how to create an appropriate listing.
- How long will validation take?
This largely depends on the type of certificate that you purchased and your response times. No matter which type of certificate that you purchase, the Certificate Authority (CA) will be contacting you directly and will only proceed with next steps upon your response. For Domain Validated (DV) certificates, these can typically be issued in a matter of minutes to one business day. For Organization Validated (OV) certificates, these tend to take around 2-3 business days to be issued. And for Extended Validation (EV) certificates, these usually take between 3-5 business days to be issued.
- Who do I send a validation document to?
For this, we would recommend contacting your SSL provider directly. They should have a list of email addresses and other contact information for the Certificate Authorities (CAs) directly, depending on your region and what type of certificate you purchased.
- Why is my order showing Failed Security Review? What does that mean?
Certificate Authorities (CA's) randomly pull certificates aside for additional review from time to time. This does not mean you did anything wrong or that your certificate is invalid. This could also be due to an issue with your domain name. We would advise you to contact your SSL provider, who can contact the CA directly and help get this resolved quickly.
- I completed validation, but never received the certificate. What should I do?
After completing validation, the Certificate Authority (CA) will send the certificate to the email address you provided as your technical contact. If, for whatever reason, the technical contact does not receive the email, please contact your SSL provider after checking your Spam and Junk Mail folders.
- Can I use the email address listed in the Whois to complete Domain Control Verification (DCV)?
Yes, you can do this for DV, OV, and EV certificates.
- I cannot remember or have lost my login details.
If you still have the order number they can use the automated password reminder system or if not then, an email must be sent from the administrative email address on the account to firstname.lastname@example.org. Concluding the original domain name it was purchased for, or the original order number.
- I have accidentally deleted my "private key" what can I do now?
First check your backups and see if you can re-install the "private key". If you don't know how to re-install the key from your backups, contact your systems administrator. Failing that, contact your web server software vendor for technical support. The only alternative course of action available is a re-issuance of the certificate following the re-submitting of a replacement CSR.
- I have changed my server, or moved to a different provider; how do I move the certificate?
The easiest way is to create a new CSR on the new machine and have the certificate re-issued.