|
Ideally for
|
|
|---|---|
|
Brand
|
DigiCert |
|
Issue time
|
10 minutes |
|
Secures
|
Email / Documents |
|
Validation Requirements
|
Domain Control, Identity Verification, Organization Validation |
|
Certificate Fields
|
Company Name, [email protected], First Name, Last Name |
|
Email Encryption & Signing
|
Yes |
|
Document Signing
|
Yes |
|
User Authentication
|
No |
|
Secure Hash Algorithm
|
SHA-2 |
|
Key Encryption
|
2048 bit |
|
Certificate Encryption
|
Up to 256-bit |
DigiCert S/MIME Class 2
- Domain Control & Business Validation
- Secures email communications
Digicert S/MIME Class 2 is an easy, affordable, and excellent solution to secure business email communications. This SSL Certificate digitally signs and encrypts email messages using the S/MIME protocol, which verifies the sender and prevents tampering, allows access to specific applications, websites, or interfaces, as well as devices like laptops and cellphones, and provides enhanced security if usernames and passwords are misplaced or stolen.
Email Encryption
DigiCert S/MIME Class 2 digitally signs your emails and enables end-to-end encryption between you and your recipients. Once you hit the “send” button, you’ll have peace of mind that no attacker will intercept your confidential messages. Breaking the 256-bit encryption and a 2048-bit signature key is beyond human capabilities.
Document Signing
Along with emails, this certificate can also secure Microsoft® Office and OpenOffice business documents. It will also ease the transition from ink paperwork to digital workflows. By applying the digital signature to a document, you’ll ensure its authenticity and prevent hackers from altering it.
User two-factor authentication
Digicert S/MIME Class 2 is used for two-factor authentication. Once a server is configured for client certificate authentication, it will only grant a user access to it if the client presents the correct client certificate. When using a web browser to connect to the server, without the correct client certificate, the client cannot even access the credentials page.
FDA ESG compliant
If you’re doing business with the FDA (Food and Drug Administration), encrypting your emails is required. The ESG (Electronic Submission Gateways) verifies the senders’ identity before sending your email to the relevant FDA office. This email certificate ensures smooth and secure communication with the FDA.
Domain Control, Identity Verification, and Organization Validation
This email certificate offers the highest level of validation to emails and digital documents. After validation, your company address and company name will appear in the certificate fields along with your first and last names.
Compatible with almost any platform
Digicert email certificates are fully trusted by all major servers, email clients, as well as internet browsers. You can install them on Windows, Linux, Mac, and many other platforms. They also support major email servers such as Netscape Communicator, Microsoft Outlook, Microsoft Exchange, and Mozilla Thunderbird.
Here is a list of the most common questions our customers have when buying a DigiCert S/MIME SSL Certificate:
Here are the steps that you need to do in order to pass OV (Organization Validation) for your S/MIME Class 2 email SSL Certificate:
Open a ticket with us and let us know the following info:
A. Your Company Info:
- Legal Company Name
- Organization Phone Number – This should be a number that can be verified against an online third-party address listing (e.g. Google business). DigiCert will call your verified organization phone number to confirm your organization for your SSL.
- Company Address – Address, City, State, Country, Zip Code
B. Your Company Contact Info:
- First Name
- Last Name
- Phone Number
C. The Email address, First Name, and Last Name the SSL will be issued for.
What are Multi-Year SSL Subscription Plans?
Starting with August 19th, 2020, the maximum duration of publicly-trusted SSL/TLS certificates issued by all Certificate Authorities (CAs) has been set to a maximum of 13 months.
However, in order to make your SSL Management process time-saving and cost-effective, the CAs and SSL Dragon are offering you the 2 Year and 3 Year SSL Subscription Plans.
This means that you can still buy a 2 or 3 year SSL Certificate and continue to benefit from multi-year discounting, while still remaining compliant with the CAB Forum SSL requirements.
How the Multi-Year SSL works?
Due to security reasons, your SSL certificate is initially issued with a maximum 1-year validity.
30 days before the expiration of your certificate, SSL Dragon, on behalf of the CA, will notify you and ask you to reissue your SSL, in order to get the additional (replacement) 1-year certificate, according to your Subscription Plan.
This FAQ explains to you how to reissue your SSL Certificate, step by step.
You will need to validate & install the replacement SSL:
a. If you have a Domain Validation SSL Certificate, a short verification of your domain name will be required via Email, HTTP, or DNS in order to issue the 1-yr replacement SSL.
b. If you have a Business or Extended SSL Certificate – an additional Business Validation/Extended Validation recheck and callback process will also be required.
You can still reissue your certificate at any time and as many times as you like during your Multi-Year SSL Subscription Plan.
On your SSL Certificate’s page within the SSL Dragon account, you will find all the details regarding your Subscription Plan:
- Valid From – Shows the date when your SSL was issued and became active
- Expires – Shows the date when your SSL expires and needs to be reissued (not Renewed).
- Subscription Starts – The date when the first SSL was issued and the subscription period activated
- Subscription Ends – The date when the subscription ends and SSL needs to be Renewed (not Reissued)
- Next Reissue – shows the number of days left of your SSL. The Certificate should be reissued 30-days prior to this date.
Server and Client OS Compatibility
Server Platforms And Mobile Browser Compatibility
Server Platforms:
- BEA Weblogic
- IBM HTTP Server
- Microsoft ISA
- Microsoft IIS
- Microsoft SQL Server 2005
- Microsoft Live Communication
- Apache
- BEA Weblogic
- Lotus Domino
- OpenLDAP
- C2Net Stronghold
- Plesk
- WebSTAR
- Webmin
- Java Web Server (Javasoft / Sun)
- Ensim Control Panel
- cPanel / Web Host Manager
- Hsphere
- C2Net Stronghold
- iPlanet Server / Sun One
- Java Web Server (Javasoft / Sun)
- Lotus Domino
- Tomcat
- Netscape Enterprise Server
- Novell ConsoleOne
- Novel Webserver
- C2Net Stronghold
- And other SSL-Capable Servers
Email Clients:
- Lotus Notes (6+)
- Microsoft Outlook 99+
- Mozilla Thunderbird 1.0+
- Mail.app (Mac OS X)v
- Microsoft Entourage (OS/X)
- Microsoft Outlook Express 5+
- The Bat 1+
- Qualcomm Eudora 6.2+
- Windows Mail 1.0+ (Vista)
Need help securing your website? Have questions, or unsure which SSL to choose? Let our fearless dragons help you! Follow the following steps towards getting the type of help that you need.
1. Use our Wizard and find the SSL Certificate that suits you best;
2. Find your answers on our Frequently Asked Questions page;
3. Open a Ticket with our Sales, Billing and Technical Support dragons. We will answer your ticket as soon as possible. We work Monday through Saturday, from 9 AM to 11:00 PM Pacific Time;
4. Email us using our Contact Form.
