Extended Validation (EV)

Authentication Requirements

Extended Validation (EV) SSL Certificates achieve the highest level of consumer trust through the strictest authentication standards of any SSL Certificate. Extended Validation (EV) verification guidelines require us to obtain and verify multiple pieces of identifying information.

Once an order has been submitted via our online ordering system please continue to monitor your e-mail for further information and requests for documents. We recommend completing the appropriate acknowledgement document as priority so we may expedite your order.

If you have ordered a Symantec® branded SSL Certificate you may be contacted directly by Symantec® and may be provided with an acknowldegement document to complete and return. A copy of the document can viewed and completed by clicking the following link :

Symantec® Acknowledgment Of Agreement (PDF)

If you have ordered a True BusinessID® + EV SSL Certificate you may be contacted directly by GeoTrust® and may be provided with an acknowledgement document to complete and return. A copy of the document can be viewed and completed by clicking the following link :

True BusinessID® +EV Acknowledgment Of Agreement (PDF)

Please ensure to complete and fax the appropriate acknowledgement document to us, using one of the fax numbers from our Contact Us page. Following receipt of the completed document the following authentication requirements will be carried out to ensure your order can be expediently processed.

Organization Authentication Requirements

The following entities are eligible to receive an Extended Validation (EV) SSL Certificate provided they are currently registered with and approved by an official registration agency in their jurisdiction. The resulting charter, certificate, license or equivalent must be verifiable through that registration agency.

» Government agencies
» Corporations
» General partnerships
» Unincorporated associations
» Sole proprietorships

We must be able to confirm all of the following organizational registration requirements from official government agency records :

The organization's registration number, date of registration / incorporation and the organization's registered address (or the address of the organization's registered agent).

A non-government data source (such as Dun & Bradstreet) must include the organization's place of business address if it is not included in the government agency records.

If the organization has been registered for less than three years, we may be required to verify operational existence through one of the following means :

Through a non-government data source (such as Dun & Bradstreet), or by verifying the organization has an active demand deposit account (such as a checking account) with a regulated financial institution through a professional opinion letter or directly with the financial institution.

Domain Authentication Requirements

To qualify for an Extended Validation (EV) SSL Certificate, domain registration details must reflect the full organization name as included in the SSL Certificate request. Where domain registration does not reflect the organization name as identified in the SSL Certificate request, positive confirmation of the organizations exclusive right to use the domain name is required from the registered domain administrator or with a professional opinion letter.

The domain must be registered with ICANN or an IANA registrar (for CCTLDs). Domain registration details must be updated to reflect the organization name as included on the SSL Certificate request.

Where domain registration is private, the domain registrar is required to unblock the privacy feature.

The organizations "Certificate Approver" must confirm knowledge of the organization's domain ownership during the verification call.

Organizations Approver Authentication Requirements

To qualify for an Extended Validation (EV) SSL Certificate, the "Certificate Approver" identified during the ordering process must be employed by the requesting organization and have appropriate authority to obtain and delegate Extended Validation (EV) SSL Certificate responsibilities.

Employment and authorization cannot be verified through the organization's website.

If the "Certificate Approver" is listed in government records as a corporate officer (such as Secretary, President, CEO, CFO, COO, CIO, CSO, Director, or equivalent), then organizational contact employment and authorization can be approved without verifying this information as described below.

We must be able to confirm all of the following "Certificate Approver" requirements :

1. "Certificate Approver" identity, title, and employment through an independent source.

2. "Certificate Approver" is authorized to obtain and approve EV certificates on behalf of the organization. This can be verified through via a professional opinion letter, corporate resolution or by directly contacting the CEO, COO, or similar executive at the organization and confirming the authority of the organizational contact. If no public records are available regarding the CEO, COO, or other executive, we will attempt to contact the organization’s human resources department for contact details.

Order Verification Requirements

We must verify the SSL Certificate request and all SSL Certificate details with the "Certificate Approver" identified during the ordering process. We must contact the "Certificate Approver" using an independently verified telephone number.

The telephone number is obtained through one of the following methods :

By researching qualified telephone databases to find a telephone number - ensure your organization’s primary telephone number is listed in a public telephone directory, as provided in a professional opinion letter or as confirmed during a physical site visit.

During the verification call, we must verify the following with the "Certificate Approver" :

The name of the SSL Certificate Requester identified in the SSL Certificate request and his or her authority to obtain the Extended Validation SSL Certificate on behalf of the organization ;

Knowledge of the company's ownership and right to use the domain identified in the SSL Certificate request.

Approval of the Extended Validation SSL Certificate request and acknowledgment of signature of the applicable SSL Certificate Subscriber Agreement that includes all Extended Validation terms and conditions.

Additional Verification Requirements

If we are unable to verify any of the required information on your SSL Certificate application, we may request you to provide a professional opinion letter from a lawyer or accountant to verify the information.

Professional Opinion Letter Requirements

The professional completing the letter will be verified with the registered Bar Association or Board of Accountancy in the appropriate jurisdiction. If we are unable to verify the professional we cannot accept the letter signed by that individual.

Professional opinion letters must be completed by one of the following :

1. Attorney (solicitor, barrister, advocate, or equivalent) licensed to practice law in the country of the applicant’s jurisdiction of incorporation or any jurisdiction where the applicant maintains a confirmed office or physical facility.

2. Certified Public Accountant (chartered accountant, or equivalent) licensed to practice accounting in the country of the applicant’s jurisdiction of incorporation or any jurisdiction where the applicant maintains a confirmed office or physical facility.

3. Qualified Government Officials (based on country regulations) in the country of the applicant’s jurisdiction of incorporation or any jurisdiction where the applicant maintains a confirmed office or physical facility. These may include Clerks, Bailiffs, Registrars, Judges, Justice of the Peace and Police Officers.

4. Notaries Publics (outside of the US and Canada) who are a Government Official or Legal Professional can sometimes sign a professional opinion letter. Contact Us for more information.

Extended Validation (EV) orders require all information in the professional opinion letter be confirmed directly with the Attorney or Certified Accountant. They will be contacted using the contact details filed with the registered Bar Association or Board of Accountancy in the appropriate jurisdiction. Please ensure this person is aware of our intent to contact them to verify the information.