• Home |
• Contact Us |
• Certificate Centre Login

Global Support Centre > EVSSL Application > FAQs

Who can purchase an ExtendedSSL certificate?
GlobalSign ExtendedSSL certificates are validated according to a strict set of procedures defined by the CABForum (The CA Browser Forum). For this reason the certificate can only be purchased either directly by the Applicant or by an agent working on behalf of the Applicant. In either situation signatures must be received from both the certificate requestor and the contract signer. Please note that this could be the same person fulfilling both roles. In addition, GlobalSign verifies the certificate approver, i.e. the person with authority to approve the certificate requestor’s right to request certificates on behalf of the applicant. The definition of each role is as follows:-

(1) Certificate Requester – The ExtendedSSL Certificate Request MUST be submitted by an authorized Certificate Requester. A Certificate Requester is a natural person who is Applicant, employed by Applicant, or an authorized agent who has express authority to represent Applicant or a third party (such as an ISP or hosting company) that completes and submits an ExtendedSSL Certificate Request on behalf of Applicant.

(2) Certificate Approver – The ExtendedSSL Certificate Request MUST be approved by an authorized Certificate Approver. A Certificate Approver is a natural person who is Applicant, employed by Applicant, or an authorized agent who has express authority to represent Applicant to (i) act as a Certificate Requester and to authorize other employees or third parties to act as a Certificate Requester, and (ii) to approve ExtendedSSL Certificate Requests submitted by other Certificate Requesters.

(3) Contract Signer – A Subscriber Agreement applicable to the requested ExtendedSSL Certificate MUST be signed by an authorized Contract Signer. A Contract Signer is a natural person who is Applicant, employed by Applicant, or an authorized agent who has express authority to represent Applicant who has authority on behalf of Applicant to sign Subscriber Agreements on behalf of Applicant.

---

The Acccount Administrator
The Account Administrator is the primary authority for the account. He/she can set up or amend any of the details within the account. In small organizations the administrator may also be responsible for billing activities and for certificate ordering. In larger organizations the administrator may choose to delegate responsibility to other ‘Managers’ or ‘Staff’. For more details please see https://www.globalsign.com/resources/userguides/retail.pdf.

---

Billing Contact
The GlobalSign Certificate Center has the ability to create an additional sub account for billing information. The optional ‘Billing Contact’ is created at this stage of the application process by either providing separate information for the account, or by clicking on the checkbox to use the same details as the account administrator. More detailed information can be found here:- http://www.globalsign.com/resources/userguides/retail.pdf

---

Custom Valid from and Valid to date
GlobalSign SSL certificates can be customised such that the ‘Valid from’ and ‘Valid to’ dates can be modified prior to the issuance of the certificate. This benefit allows a certificate expiry date to be customised and therefore managed at a more granular level compared to being constrained to a fixed time period. The customization is slightly different for alternative certificate types

---

DUNS Number
Dun and Bradstreet provide independent business information services and as such GlobalSign uses the information from DUNS to cross corroborate information from other alternative sources. By providing your DUNS number it helps GlobalSign to locate and verify information more efficiently during the application process.

---

VAT - Value Added Tax - Why is this needed?
Please note that if a VAT number is not supplied, we will be required to charge VAT (not applicable outside Europe). For UK customers VAT will be charged at 17.5% and for European customers (non UK), VAT will be charged at 21%. Invoices will be raised to all customers by the appropriate local GlobalSign sales office and will illustrate the associated VAT charges if applicable.

---

CSR Confirmation
The GlobalSign Certificate Center will use the information you have provided via your CSR (Certificate Signing Request) and the information you will provide during the next part of the application process to build the full Subject information within your ExtendedSSL certificate. This includes things like the jurisdiction of incorporation information and appropriate registration numbers which have been issued to uniquely identify the organization.

---

Subject Alternative Names (SANs)
The subject alternative names (SANs) extension allows one SSL certificate to be used to secure one web server with multiple names such as different fully-qualified domain names, sub-domain names and internal IP addresses and internal server names. Read more here about the Subject Alternative Names and how they can be used to give you more flexibility.

---

Enhanced Certificate Details

General Overview
This section of the application is one of the most critical parts, as incorrectly entered details will require the application to be re-submitted and possibly re-signed by the certificate requestor if inaccuracies are discovered at a later stage. The most important concept to understand is that details are required about your incorporation/company formation. Each country will incorporate at different levels. For example the United States incorporates at a State level, therefore city information is not applicable. The United Kingdom incorporates at a Country level, therefore county/state is not applicable. Please ensure you understand the level of incorporation.

---

Doing Business AS
If the Organization is trading under an Assumed name, i.e. Doing Business As an alternative name, then it is possible to include with within the ExtendedSSL certificate. The format of the organizations name within the subject will be Organization DBA name (Organization Actual Name).

If, in addition to Applicant′s formal legal name as recorded with the applicable Incorporating Agency or Registration Agency in Applicant′s Jurisdiction of incorporation or Registration, Applicant′s identity as asserted in the EV Certificate is to contain any assumed name (also known as “doing business as”, “DBA”, or “d/b/a” in the US, and “trading as” in the UK) under which Applicant conducts business, the GlobalSign will verify that: (i) Applicant has registered its use of the assumed name with the appropriate government agency for such filings in the jurisdiction of its Place of Business (as verified in accordance with the CABForum guidelines), and (ii) that such filing continues to be valid.

---

Place of Business
The information provided here refers to a verifiable physical address for the business. Third party sources such as Dun and Bradstreet provide independent business information services and as such GlobalSign uses the information from DUNS to cross corroborate information from other alternative sources to check the physical location. By providing your DUNS number it helps GlobalSign to locate and verify information more efficiently during the application process. It is possible (For example if the company is new) that GlobalSign may need to perform a site visit to verify your location. If this is the case our vetting team will contact you.

---

Jurisdiction of Incorporation
The most important concept to understand is that details are required about your incorporation/company formation. Each country will incorporate at different levels. For example the United States incorporates at a State level, therefore city information is not applicable. The United Kingdom incorporates at a Country level, therefore county/state is not applicable. Please ensure you understand the level of incorporation applicable to your company.

---

Jurisdiction of Incorporation – Serial Number
The majority of companies will be provided a Unique Serial number to identify the company with it′s Jurisdiction of Incorporation. Please ensure that any ‘0’s are entered as the serial number. For example if your business registration serial number is 004655432 please DO NOT just enter the 4655432.

If you DO NOT have a serial number allocated, then please enter the date of registration. GlobalSign will also verify this information, so please ensure it is accurate.

---

Business Category
Please ensure you choose the correct type of business category. The majority of companies will be incorporated / registered / formed as a Private organization and therefore will be category (b). i.e.

• The Private Organization MUST be a legally recognized entity whose existence was created by a filing with (or an act of) the Incorporating or Registration Agency in its Jurisdiction of Incorporation or Registration (e.g.,by issuance of a certificate of incorporation) or is an entity that is chartered by a state or federal regulatory agency;
• The Private Organization MUST have designated with the Incorporating or Registration Agency either a Registered Agent, or a Registered Office (as required under the laws of the Jurisdiction of Incorporation or Registration) or an equivalent facility;
• The Private Organization MUST NOT be designated on the records of the Incorporating or Registration Agency by labels such as “inactive,” “invalid,” “not current,” or the equivalent;
• The Private organization MUST have a verifiable physical existence and business presence;
• The Private Organization MUST NOT be listed on any government denial list or prohibited list (e.g., trade embargo) under the laws of the GlobalSign′s jurisdiction.

Category (c) ‘Government Entity Subjects’ satisfy the following requirements:

• The legal existence of the Government Entity MUST be established by the political subdivision in which such Government Entity operates;
• The Government Entity MUST NOT be listed on any government denial list or prohibited list (e.g., trade embargo) under the laws of the CA′s jurisdiction.

Category (d) Business Entities are those businesses that do not qualify under subsection (b) but that do satisfy the following requirements:

• The Business Entity MUST be a legally recognized entity whose formation included the filing of certain forms with the Registration Agency in its Jurisdiction, the issuance or approval by such Registration Agency of a charter, certificate, or license, and whose existence can be verified with that Registration Agency;
• The Business Entity MUST have a verifiable physical existence and business presence;
• At least one Principal Individual associated with the Business Entity MUST be identified and validated;
• The identified Principal Individual MUST attest to the representations made in the Subscriber Agreement;
• Where the Business Entity represents itself under an assumed name, the GlobalSign WILL verify the Business Entity′s use of the assumed name.
• The Business Entity and the identified Principal Individual associated with the Business Entity MUST NOT be listed on any government denial list or prohibited list (e.g., trade embargo) under the laws of the CA′s jurisdiction.

---

Certificate Requestor
GlobalSign ExtendedSSL certificates are validated according to a strict set of procedures defined by the CABForum (The CA Browser Forum). For this reason the certificate can only be purchased either directly by the Applicant or by an agent working on behalf of the Applicant. In either situation signatures must be received from both the certificate requestor and the contract signer. Please note that this could be the same person fulfilling both roles. In addition, GlobalSign verifies the certificate approver, i.e. the person with authority to approve the certificate requestor′s right to request certificates on behalf of the applicant. The definition of this role is as follows:-

Certificate Requester – The ExtendedSSL Certificate Request MUST be submitted by an authorized Certificate Requester. A Certificate Requester is a natural person who is Applicant, employed by Applicant, or an authorized agent who has express authority to represent Applicant or a third party (such as an ISP or hosting company) that completes and submits an ExtendedSSL Certificate Request on behalf of Applicant.

---

Certificate Approver
GlobalSign ExtendedSSL certificates are validated according to a strict set of procedures defined by the CABForum (The CA Browser Forum). For this reason the certificate can only be purchased either directly by the Applicant or by an agent working on behalf of the Applicant. In either situation signatures must be received from both the certificate requestor and the contract signer. Please note that this could be the same person fulfilling both roles. In addition, GlobalSign verifies the certificate approver, i.e. the person with authority to approve the certificate requestor′s right to request certificates on behalf of the applicant. The definition of this role is as follows:-

Certificate Approver – The ExtendedSSL Certificate Request MUST be approved by an authorized Certificate Approver. A Certificate Approver is a natural person who is Applicant, employed by Applicant, or an authorized agent who has express authority to represent Applicant to (i) act as a Certificate Requester and to authorize other employees or third parties to act as a Certificate Requester, and (ii) to approve ExtendedSSL Certificate Requests submitted by other Certificate Requesters.

---

Contract Signer
GlobalSign ExtendedSSL certificates are validated according to a strict set of procedures defined by the CABForum (The CA Browser Forum). For this reason the certificate can only be purchased either directly by the Applicant or by an agent working on behalf of the Applicant. In either situation signatures must be received from both the certificate requestor and the contract signer. Please note that this could be the same person fulfilling both roles. In addition, GlobalSign verifies the certificate approver, i.e. the person with authority to approve the certificate requestor′s right to request certificates on behalf of the applicant. The definition of this role is as follows:-

Contract Signer – A Subscriber Agreement applicable to the requested ExtendedSSL Certificate MUST be signed by an authorized Contract Signer. A Contract Signer is a natural person who is Applicant, employed by Applicant, or an authorized agent who has express authority to represent Applicant who has authority on behalf of Applicant to sign Subscriber Agreements on behalf of Applicant.