The procedures are different and depend on certificate validation type (DV, OV or EV).
After ordering it is necessary to send the CSR file that contains encrypted information about the customer.
DV - domain verification, after filling the data in the wizard SSL, you will receive a link with the code for approval. Mail is sent to the address of the domain for which the certificate is issued, eg email@example.com, firstname.lastname@example.org. For some certificates are also available alternative methods of validation, which inform the assistant SSL.
OV - The entity data contained in the CSR must be consistent with the data in the official databases. Verification entity may consist of several stages and is dependent on the certificate issuer and the entity that is applying for a certificate.
1. Domain Verification by checking domain ownership and sending a code for verification.
2. Verification of the data in the governmental databases.
3. In some cases, verification by an external entity along with a written confirmation of the existence of the entity applying for an SSL certificate or paper application along with the documents of the entity applying for a certificate.
4 Verification with popular telephone books in the country along with telephone confirmation of the data.
For EV certificates is required to send the agreement along with the application for an SSL certificate.
DV certificates (Domain Validation) are issued in a very short time. Verification of the data needed is done remotely. Details of certified organization are not verified and displayed.
OV certificates (Organization Validation) display the details of verified organization that owns the SSL certificate.
EV certificates (Extended Validation) is a special type of SSL certificates with an extended validation. Websites with domains protected by EV certificates show the full verification of the entity by changing the color of the address bar (to green). Visitors can be sure that transactions on the secured website are safe and trustworthy.
Before you choose a validation type, consider what kind of benefits (except encryption) a certificate should offer your site.
Owners of smaller scale websites that treat securing data transfers as the most important issue will probably decide to install a DV certificate.
However when the service should inform clearly: who the owner of the site is, which organization is responsible for securing it, and the legality of the business – the best validation at a minimum is OV.
For large websites that transfer sensitive data – banking systems, government sites, or health care services – EV validation is recommended. It is the most time consuming validation process because it verifies all the relative details about the named company. After the EV application process is complete, the website operates with an exclusive SSL certificate showing the name of the website owner. Additionally, the address bar of a EV secured websites changes to a shade of green which gives visual confirmation to the user that the website is encrypted and it is now safe to share personal/financial information.
Strong validation is essential for e-commerce growth. Before issuing a SSL we check that the applicant owns or has legal rights to the domain name and is a legal entity.
Download the generated token and enter it in the DNS zone of the certified domain as a TXT record. We always add the record for the base domain and choose the shortest TTL. The token is valid for 30 days, after which it is reset and you should contact support for reissue. Depending on the hosting service provider, always enter the token string in the "value" field or its equivalent, leave the "address" / "host" / "record" field blank.
Create a fileauth.txt file, the content of which will contain the downloaded token. Put the value of the given file in accordance with the received path, so that it is visible on the Internet. Download fileauth.txt and place it in the location:
In the case of a Certum certificate, the data regarding the file method are sent to the email address provided in the CSR. The sent e-mail contains detailed instructions on how to implement it, a token and a verification link. After adding the file at the address provided in the e-mail:
yourdomainname.TLD / .well-known / pki-validation / certum.txt
the content of which must include the activation code received in the email For example:
click on the link from the email. Then click the "verify" button and then "refresh". If everything is ok, information about positive verification will appear. The received e-mail is valid for 7 days.
cyber_Folks S.A. – Cookie settings