SSL Certificates, SSL, Server Certificates, web server security
  Customer Support:  Welcome to the Client Services Center  
  Buy SSL Certificates Now
  Enterprise Solutions
  Partner Channel

Customer Support
Support Overview
Knowledge Base
Submit a Case
Support Portal
Site Seals
Reissuance/Replacement
EV Directory
Refund Policy
European Customers
True BusinessID with EV Validation Instructions

Extended Validation SSL achieves the highest level of consumer trust through the strictest authentication standards of any SSL certificate. Extended Validation verification guidelines require GeoTrust to obtain and verify multiple pieces of identifying information about Extended Validation certificate applicants.

To ensure your SSL Certificate request is processed quickly, review and provide the authentication documents described below.

Authentication Requirements Summary
  1. Complete electronic EV certificate request and obtain GeoTrust Order ID.
  2. Have the Organization’s certificate approver (identified in the EV certificate order) sign and submit the appropriate Acknowledgement of Agreement form.
  3. For faster order authentication, complete and submit the appropriate Lawyer Opinion’s letter.
  4. Review all other authentication requirements to ensure your order can be expediently processed.
Extended Validation Subscriber Agreement


REQUIRED: The Organization’s Certificate Approver must acknowledge and sign the Acknowledgement of Extended Validation SSL Agreement and fax or mail it to GeoTrust.

IMPORTANT! GeoTrust cannot begin processing your order until the signed Acknowledgement t is received.

Click here to download the GeoTrust SSL Certificate Subscriber Agreement that includes all Extended Validation terms and conditions.

Lawyer’s Opinion Letter

To facilitate order processing, complete and submit the Lawyer’s Opinion Letter. The Lawyer’s Opinion Letter verifies certificate and organization details and enables faster issuance of your certificate.

IMPORTANT! All verification information in the Lawyer’s Opinion Letter is required. If verification is not provided through the letter, it must be provided through other means (described below).

GeoTrust must be able to confirm the following regarding the Lawyer’s Opinion Letter:
  • The letter must be from a lawyer, solicitor, barrister, advocate, or equivalent licensed to practice law in the country of the requesting organization’s jurisdiction of incorporation, or in any jurisdiction where the organization maintains an office or physical facility.
  • GeoTrust must be able to verify with the appropriate authority that the lawyer is registered in the appropriate jurisdiction.
Organization authentication requirements

To qualify for an Extended Validation SSL Certificate, the organization requesting the certificate must be registered as a corporation or equivalent with the appropriate government agency in its country of jurisdiction.

GeoTrust must be able to confirm all of the following organizational registration requirements:
  • Official government agency records must include:
    • The organization’s registration number.
    • The organization’s date of registration/incorporation.
    • The organization’s registered address (or the address of the organization’s registered agent).
  • A non-government data source (such as Dun & Bradstreet) must include the organization’s place of business address.
  • f the organization has been registered for less than 3 years, GeoTrust must verify operational existence through one of the following means:
    • Through a non-government data source (such as Dun & Bradstreet)

      - or -

    • By verifying the organization has an active demand deposit account (such as a checking account) with a regulated financial institution through a Lawyer’s Opinion Letter or directly with the financial institution.
Domain authentication requirements

To qualify for an Extended Validation SSL Certificate, domain registration details must reflect the full organization name as included on the certificate request.
  • The domain must be registered with ICANN or IANA registrar (for CCTLDs).

    A parent or subsidiary relationship does not represent sufficient proof of ownership of the domain name. Domain registration details must be updated to reflect the organization name as included on the certificate request.
  • Where domain registration is not updated to reflect the organization name as identified on the certificate request, a Lawyer’s Opinion Letter regarding the organization’s exclusive right to use the name is required, in addition to verifying this fact directly with the registered domain contact.
  • The Organization’s certificate approver must confirm knowledge of the organization’s domain ownership during the verification call.
Organization’s Certificate Approver authentication requirements

To qualify for an Extended Validation SSL Certificate, the Certificate Approver identified in the certificate request must be employed by the requesting organization and have appropriate authority to obtain and delegate Extended Validation certificate responsibilities.

Note: Employment and authorization cannot be verified through the organization’s Web site.

Note: If the Certificate Approver identified in the certificate request is listed in government records as a corporate officer (such as Secretary, President, CEO, CFO, COO, CIO, CSO, Director, or equivalent), then organizational contact employment and authorization can be approved without verifying this information as described below.

GeoTrust must be able to confirm all of the following Certificate Approver requirements:
  • Certificate Approver’s identity, title, and employment through an independent source.
  • Certificate Approver is authorized to obtain and approve EV certificates on behalf of the Organization. This can be verified through one of the following methods:
    • A Lawyer’s Opinion Letter
    • A Corporate Resolution
    • Directly contacting the CEO, COO, or similar executive at the organization and confirming the authority of the organizational contact. If no public records are available regarding the CEO, COO, or other executive, GeoTrust will attempt to contact the organization’s human resources department for contact details.
Order verification requirements

As part of processing an Extended Validation SSL Certificate, GeoTrust must verify the certificate request and all certificate details with the Certificate Approver identified in the certificate request. GeoTrust must contact the Certificate Approver using an independently-obtained telephone number (not the telephone number provided in the order).

This telephone number is obtained through one of the following methods:
  • By researching qualified telephone databases to find a telephone number. Ensure your organization’s primary telephone number is listed in a public telephone directory.
  • As provided in a Lawyer’s Opinion Letter.
  • As confirmed during a site visit conducted by GeoTrust.
During the verification call, GeoTrust must verify the following with the Certificate Approver:
  • The name of the Certificate Requestor identified in the certificate request and his or her authority to obtain the Extended Validation certificate on behalf of the organization.
  • Knowledge of the company’s ownership and right to use the domain identified in the certificate request.
  • Approval of the Extended Validation SSL Certificate request.
  • Acknowledgement of signature of GeoTrust SSL Certificate Subscriber Agreement that includes all Extended Validation terms and conditions.
Related links

Extended Validation SSL FAQ

Guidelines for Extended Validation Certificates








Privacy Policy  |  Legal Notices  |  Site Map  |  Contact Us  |  Home
© 2008 GeoTrust, Inc. All Rights Reserved