Answers to Common Questions
Can't find the answer you need? Please contact us and we will be happy to help!
FAQs about RunSSL & SSL Certificates
Here are some common questions answered about us and SSL certificates:
All Comodo certificates must pass through DCV (Domain Control Validation) before they are issued. DCV is a mechanism used to prove ownership or control of a registered domain name.
There are 3 mechanisms for DCV: eMail-based DCV (Traditional) You will be sent an email to an administrative contact for your domain. The email will contain a unique validation code and link. Clicking the link and entering the code will prove domain control. Valid email addresses are: Any email address which our system can scrape from a port 43 whois check;
The following generic admin type email addresses @ the domain for which the certificate is being applied: admin@ administrator@ postmaster@ hostmaster@ webmaster@ DNS CNAME-based.
The CSR you submit to Comodo will be hashed. The hash values are provided to you and must be entered as a DNS CNAME record for your domain. The hashes are to be entered as follows: .yourdomain.com. CNAME .comodoca.com.
Note: Please take notice the trailing
period/fullstop at the tail end of each of the TLDs
as this is required to make the entry fully-qualified.
Note 2: yourdomain.com in the example above (and below in the HTTP(S) method instructions) means the Fully Qualified Domain Name (FQDN) contained in the certificate.
If you are ordering a MDC or UCC certificate, separate CNAME records must be created for EACH FQDN in your order. Examples: .subdomain1.yourdomain.com. CNAME .comodoca.com. .subdomain2.yourdomain.com. CNAME .comodoca.com. HTTP(S)-based DCV.
The CSR you submit to Comodo will be hashed. The hash values are provided to you and you must create a simple plain-text file and place this in the root of your webserver and served over HTTP-only! The file and it's content should be as follows: http://yourdomain.com/.txt Content (as a plain text file): comodoca.com
Note: The DCV will fail if any redirection
is in place.
Note 2: yourdomain.com in the example above (and in the CNAME method instructions; above) means the Fully Qualifed Domain Name (FQDN) contained in the certificate.
If you are ordering a MDC or UCC, each FQDN in the certificate MUST have the TXT file in place in its root folder. Examples: subdomain1.yourdomain.com/.txt subdomain2.yourdomain.com/.txt.
1. DOMAIN VALIDATED CERTIFICATES (DV) • A - Email Challenge-Response DCV • B - HTTP Based DCV • C - DNS CNAME Based DCV Following completion of one of the elements above the certificate will be signed and released.
Additional details can be found using the following URL: Methods of Domain Control Verification Note that ALL SSL Certificates MUST undergo the above DCV process in addition to any other requirements listed below for OV and EV certificates.
It depends on the Servers software. The CSR generation process can be subtly different please refer to our partners knowledgeable article referenced here.
Certificate Installation can vary dependant on the server software type you may be using. Please refer to our partners knowledgebase article here for further information.