How does DigiCert Secure Email For Business Certificate validation process work?
For DigiCert Secure Email For Business Certificate orders, industry standards require DigiCert to validate the organization included in your certificate request before we can issue your certificate.
The validation process is required to:
Verify the legal existence of the organization and make sure it is in good standing.
Verify the legal physical address for the organization.
Confirm your authority to order a certificate for the organization.
Prove your domain ownership
To verify your organization's existence and status, DigiCert checks corporate registries, such as local government registration records, Dun & Bradstreet, and Business Profile on Google.
DigiCert also checks for a history of fraud or phishing, and whether your organization is listed in government restricted entities or anti-terrorism databases.
Most of the organization verification work is done by DigiCert, we generally ask for very little help from you. However, a DigiCert validation agent may reach out to you for an acceptable document to help DigiCert confirm your organization is a legally and lawfully formed organization.
To confirm your authority to order certificates for the organization, DigiCert must first find a verified, publicly listed organization phone number.
Next, DigiCert uses the verified phone number to speak with someone who represents the organization, such as an organization or technical contact, to verify your authority to request a certificate for the organization. DigiCert can also speak to you, the certificate requestor, if another representative is unavailable.
To prove your domain ownership, there are two options:
1. Email Verification
DigiCert sends the authorization email to five constructed email addresses for the domain: admin, administrator, webmaster, hostmaster, and postmaster @[domain_name].
The confirmation process consists of visiting the link provided and following the instructions on the confirmation page.
DigiCert sends this email from no-reply@digitalcertvalidation.com. If using allowlist, make sure to include digitalcertvalidation.com.
2. DNS Verification
DNS TXT DCV method
Add a DigiCert generated random value (provided for the domain in your Customer Portal) to the domain’s DNS as a TXT record. When DigiCert does a search for a DNS TXT record associated with the domain, we can find a record that includes the DigiCert generated random value.
DNS CNAME DCV method
Add a DigiCert generated random value (provided for the domain in your Customer Portal) to the domain’s DNS as a CNAME record. Then, add dcv.digicert.com as the CNAME target. When DigiCert does a search for a DNS CNAME record associated with the domain, we can find a record that includes the DigiCert generated random value.
If you don't have an S/MIME Certificate or need to renew your existing one, check out our offerings: https://flexbox.cloud/en/secure-email-smime-certificate/
The validation process is required to:
Verify the legal existence of the organization and make sure it is in good standing.
Verify the legal physical address for the organization.
Confirm your authority to order a certificate for the organization.
Prove your domain ownership
To verify your organization's existence and status, DigiCert checks corporate registries, such as local government registration records, Dun & Bradstreet, and Business Profile on Google.
DigiCert also checks for a history of fraud or phishing, and whether your organization is listed in government restricted entities or anti-terrorism databases.
Most of the organization verification work is done by DigiCert, we generally ask for very little help from you. However, a DigiCert validation agent may reach out to you for an acceptable document to help DigiCert confirm your organization is a legally and lawfully formed organization.
To confirm your authority to order certificates for the organization, DigiCert must first find a verified, publicly listed organization phone number.
Next, DigiCert uses the verified phone number to speak with someone who represents the organization, such as an organization or technical contact, to verify your authority to request a certificate for the organization. DigiCert can also speak to you, the certificate requestor, if another representative is unavailable.
To prove your domain ownership, there are two options:
1. Email Verification
DigiCert sends the authorization email to five constructed email addresses for the domain: admin, administrator, webmaster, hostmaster, and postmaster @[domain_name].
The confirmation process consists of visiting the link provided and following the instructions on the confirmation page.
DigiCert sends this email from no-reply@digitalcertvalidation.com. If using allowlist, make sure to include digitalcertvalidation.com.
2. DNS Verification
DNS TXT DCV method
Add a DigiCert generated random value (provided for the domain in your Customer Portal) to the domain’s DNS as a TXT record. When DigiCert does a search for a DNS TXT record associated with the domain, we can find a record that includes the DigiCert generated random value.
DNS CNAME DCV method
Add a DigiCert generated random value (provided for the domain in your Customer Portal) to the domain’s DNS as a CNAME record. Then, add dcv.digicert.com as the CNAME target. When DigiCert does a search for a DNS CNAME record associated with the domain, we can find a record that includes the DigiCert generated random value.
If you don't have an S/MIME Certificate or need to renew your existing one, check out our offerings: https://flexbox.cloud/en/secure-email-smime-certificate/
Updated on: 29/10/2024
Thank you!