This document is a guide for obtaining SSL Certificates products with the Extended Validation (EV) SSL type.

The term Organization is used to represent Companies, government agencies, non-profit organizations and other organizations that can be proven by having legal documents from either government agencies or legitimate legal entities.

Verification process for SSL with Extended Validation (EV)

Extended Validation (EV) is a verification process required by the Certificate Authority through a very strict process by checking and ensuring that the identity of the website manager and other information from the EV SSL Certificates order is appropriate and correct.

There are 9 steps required by the Certificate Authority to obtain SSL Certificates which have the type of validation with Extended Validation (EV) or called EV SSL:

  1. Organization Authentication

    This process is exactly the same as the verification process required for an Organization Validation (OV) SSL Certificate.

  2. Operational Existence

    If the organization has been running for less than 3 years, the Certificate Authority requires additional evidence of the organization’s operational activities. This can be fulfilled through information contained in the company information register database such as on Ahu.go.id, Kemenkumham.go.id, DUNs and Bradstreet (DnB), or with a statement from the bank explaining and stating that you really as an account holder acting on behalf of the Organization or Company’s activities.

  3. Domain Authentication

    This process is exactly the same as the verification process required for this type of SSL Certificate Organization Validation (OV).

  4. Address Authentication

    Requires accurate information by ensuring that the information written on the Organization’s address is appropriate and exactly matches the address submitted on the SSL Certificate. Certificate Authorities cannot use tools listed in the customer database for the phone. Acceptable addresses are addresses that match those contained in the organization’s legal documents, or those contained in information databases about companies such as DUN’s and Bradstreet (DnB).

  5. Telephone Authentication

    The telephone number used by the Certificate Authority when verifying is the number that has been registered according to the address and registered when ordering the SSL Certificate (Administrative Contact Details). Customer database information for telephones (such as Telkom) will also be used by the Certificate Authority to confirm address and telephone number information.

  6. Employment Verification

    The Certificate Authority will confirm the registered telephone number and will contact the HR/Payroll department of your organization. To ensure information about you as a contact person representing your organization. As well as ensuring information about the number of employees and the interview process about your company.

  7. Authority Verification

    If the contact person stated on the Certificate as an Organizational Contact is not an employee of your company, then the Certificate Authority will require confirmation from the manager or head of the company to ensure that the Contact Person listed on the Certificate really has permission to place an order for the product. SSL Certificate acting on behalf of the proposed company and willing to sign an agreement agreeing to the applicable terms and conditions.

  8. Acknowledgment of Agreement

    Approve and sign documents regarding the terms and conditions of the Certificate Authority signed by the Organization Contact.

  9. Verification Call

    This verification process is exactly the same as the verification process required for an Organization Validation (OV) SSL Certificate.

Further questions?

If you have further questions regarding the need for the verification process, please click Here.