Industry standards change: End of 2-year public SSL/TLS certificates
On August 27, 2020, 6:00 PM MDT (August 28 00:00 UTC), DigiCert stopped issuing public DV, OV, and EV SSL/TLS certificates with a maximum validity greater than 397 days. For more information about this change, see End of 2-year DV, OV, and EV public SSL/TLS certificates.
To maximize your SSL/TLS coverage, purchase your new certificates with a DigiCert® Multi-year Plan. For more information about these plans, see Multi-year Plans.
GeoTrust Cloud DV Certificates use Subject Alternative Names (SANs) to let you secure multiple domains (example.com) and wildcard domains (*.example.com) with one certificate.
The base price includes only one Fully Qualified Domain Name (FQDN). Adding SANs to a GeoTrust Cloud DV certificate order may incur additional costs.
A Certificate Signing Request (CSR) is required to complete the order.
Create a Certificate Signing Request
To remain secure, certificates must use at least a 2048-bit key size. For information about creating a CSR, see Create a CSR (Certificate Signing Request).
Select the DV Certificate you want to order
Add Your CSR
We take the common name and any SANs included in your CSR, and add them to the Common Name / SANs field.
On the Request GeoTrust Cloud DV Certificate page, in the Certificate Details section, use one of the options below to add your CSR.
Common Name / SANs
We take the common name and SANs included in your CSR and add them to the Common Name / SANs field. The SANs can be domains ([yourdomain.com]) and wildcard domains (*.[yourdomain].com).
Add, remove, and reorder SANs as needed so the certificate will secure the domains you want.
Base price includes one FQDN. Adding SANs to a GeoTrust Cloud DV certificate order may incur additional costs.
How long do you need to protect your site?
Select the validity period for the first SSL/TLS certificate in your order: 1 year, Custom expiration date, or Custom length.
Industry standards dictate that the maximum validity period for all public SSL/TLS certificates is 397 days (approximately 13 months).
Advanced Certificate Options.
SHA-256 is the only hash algorithm available for DV certificates.
Select a DCV Method to Prove Control Over Your Domain
Before DigiCert can issue your DV certificate, you must demonstrate control over the domain on your certificate order. To learn more about the available DCV Methods, see Domain Control Validation (DCV) Methods.
In the DCV verification method drop-down list, choose the DCV method you want to use for demonstrating control over the domain in the certificate order.
You must use the selected DCV method to prove control over every domain on the order:
After submitting your certificate order, you can change the DCV method from the certificate's Order # details page. In the left main menu, go to Certificates > Orders. On the Orders page, in the Order # column of the DV certificate order, click the order number link.
Select the Language for the DCV Email
In the DCV Email Language drop-down list, select the language you want DCV authentication email to be sent in.
Note: This drop-down list only appears when you select Email as your DCV method.
Add a Technical Contact
Adding a technical contact is optional.
However, we recommend adding a person we can contact should, problems arise with processing the certificate order.
Notes and Certificate Renewal Message
Adding notes and a certificate renewal message is optional.
Comments and renewal messages are not included in the certificate.
Select Payment Method
Under Payment Information, select a payment method to pay for the certificate:
The Deposit link takes you to another page in your CertCentral account. Any information entered in the request form will not be saved.
Certificate Service Agreement
Read through the agreement and check I agree to the Certificate Services Agreement.
When you are finished entering your DV order information, click Submit Certificate Request.
Before we issue your certificate, the domain validation for the domains in the order (to demonstrate control over the domain) must be completed. See Demonstrate control over domains on your SSL certificate order.