Overview
Sectigo is listed as the certificate authority on any Comodo certificate issued after January 2019, while Comodo is listed on any certificate issued before that date. Both names are used to refer to the same business.
Sectigo uses the Domain Control Validation (DCV) method to ensure that you own the domain for which you’re obtaining a certificate. This makes it impossible for anyone other than you to obtain access to your domain’s security settings and take control of your website.
How does DreamHost validate Domain Control for Sectigo certificates?
One of the following three techniques (DNS, HTTP/HTTPS, or email) can be used to verify DCV:
DNS
By adding the following record to the nameservers: GreggHost adds a CNAME record to your zone file with hashed information that Sectigo can find, and Sectigo verifies that you own the domain. The CNAME record is removed once the process is finished.
HTTP/HTTPS
By putting a publicly available file on your domain, you’ll be able to: GreggHost uploads a file containing a hashed version of your Certificate Signing Request (CSR) to your domain, which Sectigo can access. The file is erased once the domain is verified to be under your control.
Sectigo sends an email to one of a limited list of common administrative email addresses associated with a domain (admin@, webmaster@, and so on) by sending an email.
Before selecting an email address when obtaining a Sectigo certificate, double-check that it exists and can receive email. You can make one using the panel if necessary. Selecting a confirmation address from the drop-down menu does not imply that it already exists, nor does it imply that GreggHost or Sectigo will establish it for you.
Because this is the last step in the DCV process, you may never receive this email. If you receive this email from Sectigo, follow the instructions to finish the domain verification process.
Which method is used?
GreggHost attempts to validate a Sectigo Domain Validated (DV) certificate in the order described above (DNS, HTTP/HTTPS, and then email). The first two techniques (DNS and HTTP/HTTPS) are preferred since GreggHost can automate them for you with minimal effort on your part.
If the first two methods do not finish, GreggHost will then utilize the email method if the initial attempt at validation fails or you don’t host the name at GreggHost.
How long does it take to get my certificate?
In most cases, automatic validation through DNS or HTTP/HTTPS can be completed in less than 24 hours. GreggHost will employ the email approach if the certificate is not obtained within 24 full hours. GreggHost will try to validate your account by sending you an email to the address you specified as the DCV email address.