Contact us at |support@ssldragon.com

IP Address

Yes, you can secure an IP address with an SSL Certificate. However, only some specific SSL Certificates will allow you to do that. Here are those SSL Certificates:
– Comodo/Sectigo InstantSSL Premium

Please note that this certificate is a Business Validation SSL Certificate, which means that you need to have a registered company in order to be issued this SSL certificate.

Note: The following certificates used to secure IP addresses in the past, but they no longer do so:
– GeoTrust TrueBusinessID
– Thawte Web Server SSL
– Symantec Secure Site
– Symantec Secure Site PRO

Certain SSL Certificates allow you to secure an IP address, only if it is a public IP address. The validation process for IP addresses is similar to validating a domain name, but it has its particularities. That is why we encourage you to follow the guidelines below.

Comodo (now Sectigo)

1) First of all, you have to configure your SSL Certificate by filling in the configuration form inside your SSL Dragon account. When configuring your certificate, you will be asked to generate a CSR or enter an existing CSR. Please make sure you include your IP address as a “common name” (domain/IP that you want to secure) in your CSR;

2) Once your certificate is configured, you have to prove the ownership or right to use that IP address. To do that, you have to pass the HTTP/HTTPS validation for your SSL Certificate. Email or DNS validation are not available for IP validation. To pass the HTTP/HTTPS validation, you have to create a .TXT file that contains the validation code provided on the “Content” field on the details page of your SSL Certificate page. The “Content” that you have to add to the .TXT file looks similar to this:

38622319C755B5952FA4CD590655F05000C4951C2EF07BFFCB2BBA23623BE9D6
COMODOCA.COM
t0520161001553133275

Then you have to upload the TXT file at a location on your server that looks like this:
http://127.0.0.1/.well-known/pki-validation/B34037F1D9BFE9F5936AFEA9798174AB.txt

127.0.0.1 should be replaced by the IP address that you are trying to validate. You can read information on how to create the .well-known folder at this link: https://www.ssldragon.com/blog/faq_category/domain-validation/#collapse-13950

Make sure that you can access this file and link from any web browser. Inform us when you uploaded the attached TXT file on your server, so that we could run a scan of your website and look particularly for this file at this given link.

If you follow these steps exactly, you will get your IP address validated successfully.

NOTE: If you have a router to secure instead of a server, there is no way to upload the TXT file on your router. The solution to get the IP addresses validated is to reroute the IP address to a server, put the TXT file on that server, pass the IP validation, and then reroute the IP address back to the router.

3) The last step towards getting the SSL Certificate for your IP address is to pass the Business Validation. You can find detailed instructions on how to do that at this link: https://www.ssldragon.com/contacts/faq/#collapse-3176

Thawte, GeoTrust, Symantec/VeriSign

Please contact Thawte, GeoTrust, or Symantec via phone or online chat. You can find their contact information at this link. When submitting your request, please provide your email address and tell them that you configured your SSL Certificate for a public IP address. Please mention your “Partner Order ID” in your message. You can find your “Partner Order ID” on the details page of your SSL Certificate inside your SSL Dragon account. See screenshot on the right.

Thawte, GeoTrust, or Symantec will send you an email message with detailed instructions on how to pass the validation for your IP address. If you do not hear from the Certificate Authority representatives in the next 5-7 days following the date of your request, then please call +1 (520) 477-3152 (Ext 2) to check the status of your SSL Certificate with the Certificate Authority. Please note that Thawte, GeoTrust, and Symantec are all owned by Symantec, and they all have the same phone number provided above. When you talk to them, you will need to provide them your “Partner Order ID”.

If your router has a public IP address, you can still validate that IP address.

HTTP/HTTPS validation is the only method available for IP address validation. The HTTP/HTTPS validation method consists of adding a TXT file on your IP address and having Comodo/Sectigo scan that IP address and validate it. There is no way to upload a TXT file on your router. The solution to get the IP address validated is to reroute the IP address to a server, put the TXT file on that server, pass the IP validation, and then reroute the IP addresses back to the router.

You can read more information on what the TXT file should include and where to upload it in the following FAQ item: https://www.ssldragon.com/contacts/faq/#collapse-14363