Contact us at |support@ssldragon.com

How to pass the IP validation for a public IP address?

Thursday, September 27th, 2018

Certain SSL Certificates allow you to secure an IP address, only if it is a public IP address. The validation process for IP addresses is similar to validating a domain name, but it has its particularities. That is why we encourage you to follow the guidelines below.

Comodo (now Sectigo)

1) First of all, you have to configure your SSL Certificate by filling in the configuration form inside your SSL Dragon account. When configuring your certificate, you will be asked to generate a CSR or enter an existing CSR. Please make sure you include your IP address as a “common name” (domain/IP that you want to secure) in your CSR;

2) Once your certificate is configured, you have to prove the ownership or right to use that IP address. To do that, you have to pass the HTTP/HTTPS validation for your SSL Certificate. Email or DNS validation are not available for IP validation. To pass the HTTP/HTTPS validation, you have to create a .TXT file that contains the validation code provided on the “Content” field on the details page of your SSL Certificate page. The “Content” that you have to add to the .TXT file looks similar to this:

38622319C755B5952FA4CD590655F05000C4951C2EF07BFFCB2BBA23623BE9D6
COMODOCA.COM
t0520161001553133275

Then you have to upload the TXT file at a location on your server that looks like this:
http://127.0.0.1/.well-known/pki-validation/B34037F1D9BFE9F5936AFEA9798174AB.txt

127.0.0.1 should be replaced by the IP address that you are trying to validate. You can read information on how to create the .well-known folder at this link: https://www.ssldragon.com/blog/faq_category/domain-validation/#collapse-13950

Make sure that you can access this file and link from any web browser. Inform us when you uploaded the attached TXT file on your server, so that we could run a scan of your website and look particularly for this file at this given link.

If you follow these steps exactly, you will get your IP address validated successfully.

NOTE: If you have a router to secure instead of a server, there is no way to upload the TXT file on your router. The solution to get the IP addresses validated is to reroute the IP address to a server, put the TXT file on that server, pass the IP validation, and then reroute the IP address back to the router.

3) The last step towards getting the SSL Certificate for your IP address is to pass the Business Validation. You can find detailed instructions on how to do that at this link: https://www.ssldragon.com/contacts/faq/#collapse-3176

Thawte, GeoTrust, Symantec/VeriSign

Please contact Thawte, GeoTrust, or Symantec via phone or online chat. You can find their contact information at this link. When submitting your request, please provide your email address and tell them that you configured your SSL Certificate for a public IP address. Please mention your “Partner Order ID” in your message. You can find your “Partner Order ID” on the details page of your SSL Certificate inside your SSL Dragon account. See screenshot on the right.

Thawte, GeoTrust, or Symantec will send you an email message with detailed instructions on how to pass the validation for your IP address. If you do not hear from the Certificate Authority representatives in the next 5-7 days following the date of your request, then please call +1 (520) 477-3152 (Ext 2) to check the status of your SSL Certificate with the Certificate Authority. Please note that Thawte, GeoTrust, and Symantec are all owned by Symantec, and they all have the same phone number provided above. When you talk to them, you will need to provide them your “Partner Order ID”.