FAQs

All Business Validation Certificate Authorities Changes Code Signing Configuration CPAC CSR Code CSR Decoder CSR Generation Tutorials CSR Generator DigiCert Domain Validation Extended Validation General Install SSL Certificates Installation IP Address LEI Multi Domain Payments Private Key Renewal S/MIME Types Updates Wildcard
Can I Use a Verified Mark Certificate without a Trademark?

No, VMCs require a trademarked logo. If you don’t have one, CMC is the alternative.

Copy Link

How Long Does it Take to Get a Mark Certificate?
  • VMC: 7–14 days (due to trademark verification).
  • CMC: 5–10 days (prior use verification).

Copy Link

Do I Need DMARC for a VMC or CMC?

Yes, DMARC enforcement is mandatory for both VMCs and CMCs.

Copy Link

What Email Providers Support VMCs and CMCs?
  • Gmail (including Google Workspace)
  • Apple Mail
  • Yahoo Mail
  • Fastmail

Copy Link

How Long Does it Take to Fix the “Not Secure” Issue?

If you buy an SSL certificate today, you can complete the HTTPS setup in less than an hour, sometimes in minutes, depending on your host. Once it’s active, your site will support HTTPS, and the browser warning will disappear. Already have a valid cert? Scan it via SSL Labs to see what’s causing the issue, then look through our SSL errors guides on how to fix not secure websites in Chrome and other browsers.

Copy Link

Is SSL Enough to Secure My Site?

SSL installation is the first and most visible step. It encrypts data and removes the “Not Secure” label. But no, it’s not the only thing you need. Keeping your site safe also means regular updates, secure passwords, and backups. We’ve written the ultimate website security guide. Check it out!

Copy Link

Should I Worry About the “Not Secure” Warning?

Yes. That security warning means your website uses the old HTTP protocol, which doesn’t encrypt any data (the sensitive information travels in plain text from your users’ browsers to your website’s server). When website visitors see this, many leave instantly, especially if they’re about to enter contact details or payment info. It can hurt both search rankings and credibility.

Copy Link

How to Generate CSR for a Code Signing Certificate?

Starting June 1st, 2023, improved security measures mandate that private keys for standard code signing certificates be exclusively stored on FIPS 140 Level 2, Common Criteria EAL 4+, or equivalent certified hardware. This change aligns with the stringent protection standards of EV code signing certificates. Consequently, Certificate Authorities (CAs) ceased supporting browser-based key generation, CSR creation, and installation processes. Instead, opting for the token+ shipment method when requesting the certificate will prompt the CA to create the CSR. Those preferring HSM installation must refer to the instructions below or the respective provider’s guidelines.

Learn more about code signing certificate delivery methods.

Copy Link

How to Pass Extended Validation for a DigiCert/GoGetSSL Code Signing Certificate?

Validating an EV Code Signing certificate from DigiCert/GoGetSSL involves these steps:

  1. Organization Authentication: The CA verifies legal entity registration using databases, documents, or a legal opinion letter.
  2. Operational Existence: DigiCert confirms activity for 3+ years through databases, documents, Dun & Bradstreet, bank letters, or legal opinion letters.
  3. Physical Address Verification: The CA validates the address via databases, documents, Dun & Bradstreet, or legal opinion letters.
  4. Phone Number Verification: DigiCert verifies phone numbers in directories, Dun & Bradstreet, or legal opinion letters.
  5. Verification Call: DigiCert confirms order details through a phone call.
  6. EV Approver Form: Sign and submit Agreement Form for approval.
  7. Final Approval: DigiCert reviews details and issues the certificate.

For in-depth information on each step, consult our guide on how to pass Extended Validation for a DigiCert/GoGetSSL certificate.

Copy Link

How to Pass Organization Validation for a DigiCert/GoGetSSL Code Signing Certificate?

The DigiCert/GoGetSSL code signing Organization Validation (OV) process involves five steps:

  1. Organization Authentication: The CA confirms legal registration and active status, comparing information with official records or submitted documents.
  2. Physical Address Validation: DigiCert cross-references business addresses with government websites and reputable directories to ensure physical presence.
  3. Phone Number Verification: The Ca validates the organization’s phone number through third-party directories or official records.
  4. Verification Call: A DigiCert agent Initiates a call to the authorized representative, using a verified phone number, or provides a voicemail option if needed.
  5. Final Approval: The Ca internally reviews details and sends email instructions for certificate collection upon successful validation.

For full information, refer to our extensive guide on Organization Validation for Digicert/GoGetSSL certificates.

Copy Link