The verification process and the documents required after purchasing a Certum SSL Certificate
The Certum Premium EV SSL Certificate (or its MultiDomain option)
In case of the EV SSL certificate (or MultiDomain option), the identity of the Subscriber of the certificate is verified in accordance with the Guidelines For The Issuance And Management Of Extended Validation Certificates.
The condition for issuance of the Certum Premium EV SSL certificate is a successful confirmation by the Subscriber of its control over the certified domain and confirmation of the information contained in the certificate application.
In order to verify the domain, please log in to your account at https://shop.certum.eu/ and then in the Activate Certificates tab continue the process, which requires choosing ONE of the SIX available verification methods (read more).
For each of the above methods, Certum will send you a message containing the information necessary to carry out the verification and a special activation link to be used after implementing the required changes in the certified domain. The domain should then be automatically verified which will be reported to you.
In order to activate the Certum Premium EV SSL certificate it is necessary to additionally verify the identity of the Subscriber. In the last stage of activation, the user selects one of two verification methods.
Verification based on documents
Selecting the option of verification based on documents consists in sending the following documents:
or
- notarial confirmation of identity
or for a quicker issuance
- a copy of the identity document of the ordering person (ID card, passport, driving license, permanent residence card). The copy should be a fully reproduced document (both sides).
The identity can also be confirmed on the basis of a valid qualified certificate issued for the Subscriber by Certum.
We would like to inform you that if you choose the option of a copy of the identity document, this copy will be used only for the purpose of processing the contract/order and after confirmation of your identity will not be further processed and will be immediately, permanently deleted from our database.
In addition, Certum also requires sending the following:
- a paid domain bill or a statement of the domain owner about the subscriber’s exclusive right to use the domain name – only if the domain is not registered in the WHOIS database or information in the database indicates that the subscriber is not the owner of the domain,
- authorization/power of attorney confirming the applicant’s authorization to represent the entity, if the person applying for the certificate is not authorized to represent the institution on their own (power of attorney template).
All collected documents should be sent to Certum using one of the following methods:
- by e-mail as a password-protected file to the address: ccp@certum.pl (recommended form), please contact the Certum technical support helpline in order to determine how to transfer the password
- by fax to: +48 91 4257 422
- by post to:
Certum
Bajeczna 13
71-838 Szczecin
The Certum Trusted SSL certificate (or its MultiDomain/ Wildcard options)
The condition for issuance of the Certum Trusted SSL certificate is a successful confirmation by the Subscriber of its control over the certified domain and confirmation of the information contained in the certificate application.
In order to verify the domain, please log in to your account at https://shop.certum.eu/ and then in the Activate Certificates tab continue the process, which requires choosing ONE of the SIX available verification methods (read more).
For each of the above methods, Certum will send you a message containing the information necessary to carry out the verification and a special activation link to be used after implementing the required changes in the certified domain. The domain should then be automatically verified which will be reported to you.
In order to activate the Certum Trusted SSL certificate it is necessary to additionally verify the identity of the Subscriber. In the last stage of activation, the user selects one of two verification methods.
Verification of an Organization based on an email using the company domain.
Selecting the option of verification based on documents consists in sending the following documents:
or
- notarial confirmation of identity
or for a quicker issuance
- a copy of the identity document of the ordering person (ID card, passport, driving license, permanent residence card). The copy should be a fully reproduced document (both sides),
The identity can also be confirmed on the basis of a valid qualified certificate issued for the Subscriber by Certum.
We would like to inform you that if you choose the option of a copy of the identity document, this copy will be used only for the purpose of processing the contract/order and after confirmation of your identity will not be further processed and will be immediately, permanently deleted from our database.
In addition, Certum also requires sending the following:
- authorization/power of attorney confirming the applicant’s authorization to represent the entity, if the person applying for the certificate is not authorized to represent the institution on their own (power of attorney template)
All collected documents should be sent to Certum using one of the following methods:
- by e-mail as a password-protected file to the address: ccp@certum.pl (recommended form), please contact the Certum technical support helpline in order to determine how to transfer the password
- by fax to: +48 91 4257 422
- by post to:
Certum
Bajeczna 13
71-838 Szczecin
Verification of an Organization based on an email using the company domain.
Stage one: Verification of the existence of an organization
- Confirmation of the organization is done based on a registration document, or if the organization’s data is available in publicly available company databases on the basis of an entry from the register.
Stage two: Verification of the Subscriber’s identity
- If the certificate application is made from a corporate domain, then confirmation of the Subscriber’s identity takes place after domain validation without the need to send additional documents. Once the domain is validated, a message is sent to the designated email address, based on which the Certum team is able to associate the certification request with the organization.
- If the application is submitted outside the company’s domain, document-based verification should be used.
- Verification time is from 1 day to 5 working days.
The Certum Commercial SSL certificate (or its MultiDomain/ Wildcard options)
The condition for issuance of the Certum Commercial SSL certificate is a successful confirmation by the Subscriber of its control over the certified domain and confirmation of the information contained in the certificate application.
In order to verify the domain, please log in to your account at https://shop.certum.eu/ and then in the Activate Certificates tab continue the process, which requires choosing ONE of the SIX available verification methods (read more).
For each of the above methods, Certum will send you a message containing the information necessary to carry out the verification and a special activation link to be used after implementing the required changes in the certified domain. The domain should then be automatically verified which will be reported to you.
THE RESULT OF A POSITIVE VERIFICATION WILL BE THE AUTOMATIC ISSUE OF A CERTIFICATE
NOTE:
In justified cases, the Certum team may ask for sending additional documents necessary for proper verification.
An example of the verification of the domains included in the certificate.
Notice:
According to global standards, Certum does not issue SSL certificates for domains that are on the TLD (Top-Level Domain) list
You can check the TLD list under the link
Premium EV, Trusted SSL, SSL Commercial SSL:
an example of the verification of the domain included in the certificate.
| Example | |
|---|---|
|
In the CN field (Common Name) in the certificate in the first position there is the domain: your-domain.pl. In this example only one domain is verified: your-domain.pl. Attention: In the case of issuing a certificate for the domain www.your-domain.pl – the certificate automatically generates an alternative name for the domain (name of the host) without www e.g.: your-domain.pl. |
The Wildcard SSL certificate option
an example of the verification of a domain included in the certificate.
| Example | |
|---|---|
|
*.your-domain.pl The Wildcard SSL option is designed to protect subdomains within a single-level main domain (name of the host) as defined by the customer. An example of the usage of the Wildcard certificate option
|
In the CN field (Common Name) in the certificate in the first position there is the domain *.your-domain.pl. In this example only one domain is verified *.your-domain.pl. Attention:The Wildcard certificate option automatically creates the alternative domain name (name of the host):
Additionally the Wildcard certificate option does not automatically add www to the name of the domain (name of the host). |
The MultiDomain certificate option:
an example of the verification of the domains included in the certificate.
| Example | |
|---|---|
|
A single domain
|
In the CN field (Common Name) in the certificate in the first position there is the domain:your-domain.pl. The remaining names will be included in the ASN field (Alternative Subject Name). In this case the verification is done only for the first domain: your-domain.pl. The subdomains included in the main domain do not require additional verification. Attention: The MultiDomain option of the certificate does not automatically add www to the name of the domain (name of the host). |
| Example | |
|---|---|
|
Multiple domains
|
In the CN field (Common Name) in the certificate in the first position there is the domain:your-domain.pl. The remaining names will be included in the ASN field (Alternative Subject Name). In this example two domains are verified: your-domain.pl and your-second-domain.pl.The subdomains included in the main domain do not require additional verification. Attention: The MultiDomain option of the certificate does not automatically add www to the name of the domain (name of the host). |
Validity of the documents being the basis for verification of certification applications:
- For new certification applications and for renewed certificates, documents and information from public registers may not be older than 398 days.
- Authorization documents, whether they are timely or not — remain valid for 398 days from the date of issue.
- Identity documents must be up-to-date (valid) on the day the certificate is issued.
- Identity documents delivered to Certum by e-mail should be sent in a password-protected file, please contact the Certum technical support helpline in order to determine how to transfer the password
- Please note: Certum products and services are prohibited for export or re-export to Syria, North Korea, Sudan, and Cuba.
SSL certificate verification methods
How to activate a Certum SSL certificate?
