Order a GeoTrust Cloud DV Certificate

Industry standards change: End of 2-year public SSL/TLS certificates

On August 27, 2020, 6:00 PM MDT (August 28 00:00 UTC), DigiCert stopped issuing public DV, OV, and EV SSL/TLS certificates with a maximum validity greater than 397 days. For more information about this change, see End of 2-year DV, OV, and EV public SSL/TLS certificates.

To maximize your SSL/TLS coverage, purchase your new certificates with a DigiCert® Multi-year Plan. For more information about these plans, see Multi-year Plans.

Before you begin

GeoTrust Cloud DV Certificates use Subject Alternative Names (SANs) to let you secure multiple domains (example.com) and wildcard domains (*.example.com) with one certificate.

The base price includes only one Fully Qualified Domain Name (FQDN). Adding SANs to a GeoTrust Cloud DV certificate order may incur additional costs.

A Certificate Signing Request (CSR) is required to complete the order.

Order your GeoTrust Cloud DV certificate

  1. Create a Certificate Signing Request
    To remain secure, certificates must use at least a 2048-bit key size. For information about creating a CSR, see Create a CSR (Certificate Signing Request).

  2. Select the DV Certificate you want to order

    1. In your CertCentral account, in the left main menu, click Request a Certificate. Then, under All Products, click Product Summary.
    2. On the Request a Certificate page, select DV Certificates.
    3. On the DV Certificates tab, select GeoTrust Cloud DV. Then click Order Now.
  3. Add Your CSR
    We take the common name and any SANs included in your CSR, and add them to the Common Name / SANs field.

    On the Request GeoTrust Cloud DV Certificate page, in the Certificate Details section, use one of the options below to add your CSR.

    1. Click to upload a CSR
      Click the link to upload your CSR file to the Add Your CSR box.
    2. Paste CSR
      Use a text editor to open your CSR file. Copy the text, including the -----BEGIN NEW CERTIFICATE REQUEST----- and -----END NEW CERTIFICATE REQUEST----- tags and paste it into the Add Your CSR box.
  4. Common Name / SANs
    We take the common name and SANs included in your CSR and add them to the Common Name / SANs field. The SANs can be domains ([yourdomain.com]) and wildcard domains (*.[yourdomain].com).

    Add, remove, and reorder SANs as needed so the certificate will secure the domains you want.

Base price includes one FQDN. Adding SANs to a GeoTrust Cloud DV certificate order may incur additional costs.

  1. How long do you need to protect your site?

    1. Click Select a coverage length
    2. In the How long do you need to protect your site window, select your coverage:
      1. With a 1-year plan, you get a 1-year certificate by default.
      2. With 2, 3, 4, 5, or 6-year plans, your first certificate has a 397-day validity by default.
      3. For more information about these plans, see Multi-year Plans.
    3. Click Save.
    4. To modify your SSL/TLS certificate coverage, under Plan details, click the pencil icon.
  1. Certificate validity

    Select the validity period for the first SSL/TLS certificate in your order: 1 year, Custom expiration date, or Custom length.

    • For a certificate with a shorter validity than the order, you need to reissue your certificate to use the remaining validity on the order.
    • Certificate validity determines the length of the first certificate issued for the plan. If needed, you can change the validity period each time you reissue your certificate.

Industry standards dictate that the maximum validity period for all public SSL/TLS certificates is 397 days (approximately 13 months).

  1. Advanced Certificate Options.

    SHA-256 is the only hash algorithm available for DV certificates.

  1. Select a DCV Method to Prove Control Over Your Domain

    Before DigiCert can issue your DV certificate, you must demonstrate control over the domain on your certificate order. To learn more about the available DCV Methods, see Domain Control Validation (DCV) Methods.

    In the DCV verification method drop-down list, choose the DCV method you want to use for demonstrating control over the domain in the certificate order.

    You must use the selected DCV method to prove control over every domain on the order:

    • DNS TXT (recommended)
      The DNS TXT DCV method allows you to demonstrate control over the domain on your order by creating a DNS TXT record with a randomly generated value.
    • Email
      The Email DCV method allows an email recipient to demonstrate control over the domain by following the instructions in a confirmation email sent for the domain.
    • File
      The File DCV method allows you to demonstrate control over your domain by hosting a fileauth.txt file with a randomly generated value at a predetermined location on your website.

After submitting your certificate order, you can change the DCV method from the certificate's Order # details page. In the left main menu, go to Certificates > Orders. On the Orders page, in the Order # column of the DV certificate order, click the order number link.

  1. Select the Language for the DCV Email

    In the DCV Email Language drop-down list, select the language you want DCV authentication email to be sent in.

    Note: This drop-down list only appears when you select Email as your DCV method.

  1. Add a Technical Contact
    Adding a technical contact is optional.

    However, we recommend adding a person we can contact should, problems arise with processing the certificate order.

    1. In the Order Details section, under Contacts, in the Technical Contact box, click the Add Contact link.
    2. In the Add Contact window, provide the contact’s information (first and last name, job title, phone, and email). Then click Submit.
  2. Notes and Certificate Renewal Message
    Adding notes and a certificate renewal message is optional.

    1. Expand Notes / Renewal Message.
    2. Comments to Administrator
      Add a note to the order that only an Administrator can see (e.g., why the certificate is needed).
    3. Order Specific Renewal Message
      Create an order-specific renewal message.

Comments and renewal messages are not included in the certificate.

  1. Select Payment Method
    Under Payment Information, select a payment method to pay for the certificate:

    1. Pay with Contract Terms
      Have a contract and want to use it to pay for the certificate? If yes, you may use it.
      Note: When you have a contract, it is the default payment method.
    2. Pay with Credit Card
      Don’t have a contract or don’t want to use the contract to pay for this certificate? Use a credit card to pay for it.
    3. Pay with Account Balance
      Don’t have a contract or don’t want to use the contract to pay for this certificate? Bill the cost to your account balance.
      To deposit funds, click the Deposit link.

The Deposit link takes you to another page in your CertCentral account. Any information entered in the request form will not be saved.

  1. Certificate Service Agreement

    Read through the agreement and check I agree to the Certificate Services Agreement.

  2. When you are finished entering your DV order information, click Submit Certificate Request.

What's next

Before we issue your certificate, the domain validation for the domains in the order (to demonstrate control over the domain) must be completed. See Demonstrate control over domains on your SSL certificate order.