Knowledge base
1000 FAQs, 500 tutorials and explanatory videos. Here, there are only solutions!
Thank you for choosing Infomaniak to secure your sites with an EV or DV Sectigo SSL certificate (formerly Comodo).
An SSL certificate secures all exchanges between your server and your visitors, displays a padlock, and adds https to your site.
If you have a company registered in the registry or the Chamber of Commerce, you have the option to display your brand or organization name in the browser's address bar with an EV SSL certificate.
Which SSL certificate to choose?
- What are the conditions for getting an EV SSL certificate?
- What are the differences between an EV and DV certificate?
- Can I order an SSL certificate from Infomaniak if my site is hosted elsewhere?
- What does the Sectigo SSL certificate warranty cover exactly?
What would you like to do?
- Fix errors after activating an SSL certificate
- Install a free Let's Encrypt SSL certificate on a site
- Uninstall a Let's Encrypt certificate
- Update a Let's Encrypt certificate (e.g., after adding/removing aliases)
- Generate a CSR certificate for all subdomains of a domain (wildcard)
I couldn't find the answer to my question
We're here for you 7/7. Feel free to contact us by email, chat, or phone.
This guide details the conditions and procedure to obtain an EV SSL certificate from Sectigo.
Extended Validation (EV) SSL certificates can only be granted to organizations, companies, and businesses registered with the registry or chamber of commerce. DV certificates from Sectigo and Let's Encrypt are not subject to this constraint.
Compare available SSL certificates
Procedure for validating EV certificates
Obtaining an EV SSL certificate may take up to 24 hours and requires valid information from the client.
This procedure is repeated every 12 months, regardless of the chosen subscription duration for the EV certificate.
1. Verification of company details
The data to be added to the certificate must first be verified from an independent source:
- the legal or trading name
- the legal form
- the address
- the postal code
- the region / canton / department
- the country / country code
Attention:
- the company name must match exactly the one registered with the registry or chamber of commerce; the order can only be processed if the given name is registered and correctly noted
- only the registered legal name or the trading name followed by the legal name in parentheses is allowed [example: Trading name (Legal name)]; for entities without a legal name, all trading names can be used
- using a postal address is prohibited
In light of the above, a new request with correct data in the CSR may sometimes be necessary, and Infomaniak may also require your approval to make changes to the information provided during the order.
2. Verification of data in the Whois directory
The Whois directory displays information about the owner of a domain name. This data must match the information provided when ordering the EV SSL certificate.
To update a domain's information in Whois:
- if your domain is managed by Infomaniak, follow this guide (click here)
- if your domain is not managed by Infomaniak, contact your hosting provider/registrar
3. Contract & validation for the EV certificate
After ordering an EV certificate, the designated company contact person will receive an email from the Sectigo certification authority with the following documents:
- the certificate request form
- the certificate contract
These documents are pre-filled, and the contact person must validate them online using an additional code. This will be provided by an automated Sectigo phone robot (the call number will come from the Netherlands, +31 88 775 77 77 in principle) orally to your registered number with the registry or chamber of commerce.
Each certificate request is validated by phone, including renewals and reissues of multi-domain certificates.
4. Domain verification (only for external sites)
This step verifies that you have control of the domain (if it is external to Infomaniak) for which the certificate is requested. Domains of sites hosted at Infomaniak are automatically validated.
Each (sub-) domain must be individually approved via one of the methods described in this guide (click here).
This guide details the conditions and procedure for using a Sectigo Infomaniak certificate on a site hosted elsewhere, with a third-party host.
In fact, you have the possibility of benefiting from Infomaniak's advantageous rates for your SSL certificates while managing your sites with another host.
How to do ?
Due to different providers, the installation of your certificate will not be automatic.
1. Obtain the CSR
Export the CSR configuration file from your host and enter it when ordering your certificate from Infomaniak.
2. Confirm domain ownership
Validate the domains included in the certificate via one of the following methods:
- entering a validation code received at one of the following email addresses:
- admin@domain-to-validate.tld
- administrator@domain-to-validate.tld
- hostmaster@domain-to-validate.tld
- postmaster@domain-to-valider.tld
- webmaster@domaine-Ã -valider.tld
- creating a unique CNAME record in domain DNS
- validation txt file to upload via FTP to your site
This guide details the validity rules of EV and DV SSL certificates (effective from September 1, 2020).
Validity Period of SSL Certificates
Following a meeting of the CA/B Forum, which brings together major players in the Web (Safari, Google Chrome, Mozilla Firefox, etc. - learn more), the decision was made to set the maximum validity period of SSL certificates to 397 days. This change aims to limit the risk of certificate hacking and increase the security level of certificates. It is not excluded that the maximum validity period of a certificate will be further shortened in the coming years. Some actors like Apple, Google, or even Sectigo are pushing in this direction.
Sectigo DV SSL Certificates
Sectigo DV SSL certificates with a duration of more than 1 year are automatically renewed by Infomaniak (certificate reissued during the month preceding its expiration date).
It is necessary to reinstall the certificate on your site if it is not managed by Infomaniak.
Sectigo EV SSL Certificates
Sectigo EV SSL certificates must be validated annually, regardless of the chosen subscription duration.
It is necessary to reinstall the certificate on your site if it is not managed by Infomaniak.
This guide explains the main differences between EV and DV certificates.
EV SSL certificates: for companies
The Sectigo EV SSL certificate can only be issued to companies registered on the commercial register or with the chamber of commerce. It ensures your clients the highest level of trust and offers unique advantages in addition to including the benefits of a DV certificate:
Your company name in the navigation bar(find out more)- Padlock in the navigation bar
- Dynamic secure site seal
- Validation of your domain name
- Manual authentication of the details and identity of your company
- Guarantee of up to $1750,000.00 for end users
- Support 7/7
Activation of an EV SSL certificate can take up to 24 hours and requires certain actions on your part.
DV SSL certificates: for companies and individuals
The Sectigo DV certificate is open to both individuals and companies. It does not include some of the advantages mentioned above, but it does offer extra benefits compared to free Let's Encrypt SSL certificates:
- Dynamic secure site seal
- Validation of your domain name
- Guarantee of up to $10000.00 for end users
- Support 7/7
DV SSL certificates are activated immediately.
And Let's Encrypt certificates?
A free Let's Encrypt certificate guarantees the same level of encryption as an EV or DV certificate. However, Let's Encrypt certificates do not offer the following benefits:
- Manual authentication of the details and authenticity of your company (EV)
- Guarantee for end users in the event of fraud (EV/DV)
- Support in the event of questions
In short, Let's Encrypt certificates ensure encryption of communications between your users and your site, but do offer cybernauts the guarantee that they are on a legitimate site the identity of which has been authenticated by a certification body.
The guarantee provided with an EV or DV SSL certificate protects your users against incidents linked to any validation errors by Sectigo, the certification body that delivers SSL certificates and validates your personal data.
The guarantee is therefore applicable if the certification body does not correctly validate the information contained in the digital certificate and if this failure leads to a financial loss for the end user in the context of a fraudulent credit card transaction.
This guide explains how to uninstall an SSL Certificate of any type, originally installed from the Infomaniak Manager.
Remove an SSL Certificate
To uninstall an Infomaniak certificate:
- Log in to the Infomaniak Manager (manager.infomaniak.com) from a web browser like Brave or Firefox
- Navigate through the left sidebar menu
- Choose SSL Certificates (universe Web & Domain)
- Click on the name of the relevant item in the displayed table
- Click on the Manage button
- Click on Uninstall
- Confirm the uninstallation of the certificate
This guide explains how to add a dynamic trust seal to a secure website with a Sectigo SSL certificate.
What is a Trust Seal?
Infomaniak, as a web host, provides SSL certificates to secure its clients' websites. Sectigo (formerly known as Comodo) is a recognized SSL certificate provider that offers different levels of security.
The "dynamic trust seal," or "Sectigo Trust Seal" / "Sectigo Trust Logo," is a visual that website owners can display on their pages to indicate to visitors that their connection is secure. This seal is a sign of trust that informs users that transactions and information exchanges on the site are encrypted and protected by an SSL certificate issued by Sectigo.
Here's how a dynamic trust seal works:
- Validation: To obtain such a seal, the site owner must first obtain a valid SSL certificate from Sectigo, which requires a validation process; depending on the chosen certificate level (Domain Validation - DV, Organization Validation - OV, or Extended Validation - EV), this validation can be more or less thorough
- Installation: Once the SSL certificate is obtained and installed on Infomaniak's web server, the website is then capable of establishing secure connections via HTTPS
- Displaying the Seal: Sectigo provides HTML code or a script that the site owner can then integrate into their website; this code displays the Sectigo dynamic trust seal
- Updating: The seal is often updated in real-time to reflect the current status of the SSL certificate; if the certificate were to expire or be revoked, the seal would also reflect this, thereby warning potential visitors that the site may no longer be secure
By using a Sectigo SSL certificate and displaying the dynamic trust seal, a website hosted with Infomaniak benefits not only from data exchange security but also from increased user trust, essential in e-commerce and for the protection of personal information.
Adding a Trust Seal
The trust seal consists of an image and HTML code. This latter only works if a Sectigo certificate is installed on the site and in this case generates an interactive logo displaying the certificate data.
Save one of the images below
Right-click on the image to save and then click on Save image as...
- Small
- Medium
- Large
Upload the image to your site
Upload the image to your web server (via FTP or your CMS) and note the URL to access this image for the next step (e.g., https://domain.xyz/wp-content/uploads/sectigo.png).
Integrate this code on the page where the seal should appear
Insert the following code into the page header:
document.write(unescape("%3Cscript src='" + tlJsHost + "trustlogo/javascript/trustlogo.js' type='text/javascript'%3E%3C/script%3E"));
//]]>
Insert the following code where the seal should appear:
TrustLogo("https://domain.xyz/wp-content/uploads/sectigo.png", "CL1", "none");
Important:
- Adapt the image path according to the URL noted above
- CL1 corresponds to a DV SSL certificate; replace CL1 with SC5 for an EV SSL certificate
This guide explains how to export an SSL certificate to have it in the form of a .zip archive containing the .key and .crt files.
We recommend storing this certificate and its private key in a secure location, as the latter could allow access to your encrypted data.
Export an SSL Certificate
To access the certificate management:
- Log in to Infomaniak Manager (manager.infomaniak.com) from a web browser like Brave or Edge
- Navigate through the left sidebar menu
- Choose SSL Certificates (universe Web & Domain)
- Click on the name of the relevant object in the displayed table
- Click on the action menu â‹® to the right of the relevant object in the displayed table
- Click on Manage
- Choose Export the certificate and follow the instructions
This guide explains how to add two different EV or DV SSL Certificates to the same site.
As it's not possible to install two SSL certificates on the same site, it's necessary to create two identical sites.
Prerequisites
- remove any potential domain name aliases from your site
Creating the Second Site
To access Web hosting to add a site :
- log in to the Infomaniak Manager (manager.infomaniak.com) from a web browser like Brave or Firefox
- click on the icon in the top right corner of the interface (or navigate through the left sidebar menu, for example)
- choose Hosting (universe Web & Domain)
- click on the name of the relevant object in the displayed table
- click on the Add a site button (in the Sites section)
- proceed without installing any tools
- choose between using a domain name or a subdomain
- indicate the domain name or subdomain
- click on Advanced options
- enable (or not) the Let's Encrypt SSL certificate on the future site
- check the box Set location manually
- choose the same location as the main site
- choose the same PHP version as the main site
- click on the blue Continue button
Installing the SSL Certificate
Once the second site is created and DNS propagation is complete (this can take between 24 to 48 hours after creating the site), you'll be able to install an SSL certificate (if you chose not to install the certificate in step 10 above).
To access the management of the website :
- log in to the Infomaniak Manager (manager.infomaniak.com) from a web browser like Brave or Firefox
- click on the icon in the top right corner of the interface (or navigate through the left sidebar menu, for example)
- choose Website (universe Web & Domain)
- click on the name of the relevant object in the displayed table
- click on SSL Certificates in the left sidebar menu
- click on the blue Install an SSL certificate button and follow the procedure