What is required for validation?
Posted by Support Team UK - Nigel, Last modified by Nicole Wayland on January 28 2016 21:13
1. DOMAIN VALIDATED CERTIFICATES (DV)
• A - Email Challenge-Response DCV
Additional details can be found using the following URL:
Note that ALL SSL Certificates MUST undergo the above DCV process in addition to any other requirements listed below for OV and EV certificates.
2. ORGANIZATION VALIDATED (OV) AND CODE SIGNING CERTIFICATES
Step1 – Verify Identity and Address - This can be acquired using the following online resources:
If Applicant is an Organization (corporation, government agency, registered business entity, etc.):
A. A government agency in the jurisdiction of the Applicant’s legal creation, existence, or recognition;
QIIS (Qualified Independent Information Source)
We MAY use the following to verify ADDRESS provided that identity has been verified as required above:
A. Articles of Incorporation (with address)
If the Applicant is an Individual:
A. Copy of a valid driver's license or passport of the Applicant
*Note:Recent=dated within the last 6 months
Step 2 – WhoIs Verification (Registrant company name and address)
Step 3 - DCV (Domain Control Validation)
Step 4 – Callback to a Verified Telephone Number (to verify applicant)
The phone number MUST be verified via one of the following:
A. Government database (QGIS)
Once the phone number is verified Comodo validation staff will call the Applicant to verify the authenticity of the certificate request. Following successful completion of the elements above the certificate will be signed and released.
* OV = Organization Validated SSL
3. EXTENDED VALIDATED CERTIFICATES (EV)
ALL requirements for EV Certificates MUST be verified directly with the government registration authority, or a Qualified Independent Information Source, or via a legal opinion or accountant letter as applicable. The basic verification requirements are:
A. Verify Legal Existence and Identity
B. Verify Trade/Assumed Name as applicable.
C. Verify Operational Existence
D. Verify Physical address and organization phone number
E. Verify Domain ownership
F. Verify the name, title, authority and signature of the person(s) involved in requesting the certificate and agreeing to the terms and conditions.