Views:

Important: This is article applies to Network Solutions® customers only.


An SSL certificate shows visitors that your website is secure. The domain name is the specific name your SSL certificate will be issued to. This is because the domain name is the specific hostname used for the secure section of your website. You can manage the validation and installation process for your SSL certificate through your Network Solutions Account Manager.

How To Configure SSL


Domain Validation Certificates will go through a 3 step configuration process post-purchase in order to validate and get the SSL issued. Organization validation and Extended Validation certificates require additional steps which are detailed below.

Step 1: Configure Domain Name

After you have purchased a Domain Validation SSL, you will need to log into the account Manager.



Then, go to the "My Security Products" section and locate the SSL they wish to manage.


 

Once you have selected the SSL you will be asked to Assign Domain Name. This is a crucial step as this should be the exact version of the domain or sub domain that the SSL should be issued for. (i.e. example.com, www.example.com or store.example.com)

Once you have entered the domain name, re-enter the domain name one last time, as it cannot be changed later. Clicking Continue takes the user to the next step.

 

The system will now perform a verification check to see if the domain entered is assigned as a domain pointer to a hosting package managed by us. If the system cannot detect a domain pointer managed here, you will be prompted with the Choose Server Type and Input a CSR that is generated by your hosting server.

If the domain is pointed to our hosting, the server type is determined by the package it is assigned to (Windows- IIS or UNIX- Apache). Additionally, the CSR for your shared hosting package is generated automatically on the back end and silently attached to the validation request so the certificate files can be created post validation. 

Step 2: Provide CSR

CSR stands for Certificate Signing Request and it is the key for the SSL certificate. It houses everything about the server, organization, domain, private key and encryption strength related to the SSL. It is the basis for how the SSL installation files are created and what dictates the handshake to make the secure connection through the browser session.

Customers hosted by a 3rd party hosting provider are responsible for providing the CSR for validation. Those customers who are hosting here, have this step taken care of automatically through a back end interface that is triggered based on the SSL configuration flow detecting the domain is pointed to a shared hosting package within Network Solutions.

Below is the process to follow if you are not hosted by Network Solutions but have purchased our SSL product.

You must submit your CSR via the Account Manager, select server software from the dropdown menu and paste CSR into field.



Step 3: Provide Validation Information

Now that you have selected/confirmed your domain and added your CSR, select a validation email address to receive the validation code and confirmation URL.

Additional methods of Validation outside of Email verification are available. Email validation must be configured first but the method can be changed by SSL Support Team.
 

HTTP/.txt file-when all components of the certificate (Domain, Hosting and SSL) are managed here, we will automatically create a .txt file based on the MD5hash and SHA256 components of the CSR and upload it to the web space via FTP. This method allows this file to be verified and can expedite the issuance of an SSL (You can also create this manually and upload it themselves).

CNAME- This method is becoming the preferred method due to the challenges with email. In order to complete this process, you or our customer support will need to contact Validation team and request the CNAME method for the SSL. An email will be sent with the MD5hash and SHA256 components in the form of a CNAME. You can then add this as a CNAME which can then be verified in order to complete the SSL issuance. This can be done within 1-2 in most cases based on DNS propagation.

Completing Validation Next Steps Domain Validation Certificates


Validating Email

Once the steps are completed, you will be sent an email containing a secure link to activate validation so the SSL can be generated and the files issued. Validation is then notified that the confirmation is complete which usually happens within an hour of clicking the link.

Validating via CNAME

A special unique CNAME is generated for each SSL validation request. This is obtained from the Sectigo Order Status Tool and will need to be entered via Account Manager to be added at their DNS Zone provider. No email confirmation will be needed to validate via CNAME, it may take 1-2 hours for this to be picked up by the Validation team and confirmed.

Validating via HTTP TXT File

A special unique MD5 Hash Code is generated for each SSL validation request. This is obtained from the Sectigo Order Status Tool. In order to use this method, take this information and create a .txt file that would be uploaded into their FTP site files. No email confirmation will be needed to validate via HTTP, it may take 1-2 hours for this to be picked up by the Validation team and confirmed.

Additional Steps for Organization, Extended Validation, and Wildcard SSL

In addition to the steps listed for Domain Validation certificates, additional information will be required for Organization (OV) and Extended Validation (EV) certificates OV and EV will require an additional form to be filled out which will include details associated with the business or organization that will be included in the files issued for the SSL. All fields are required unless specifically noted.



Completing Validation Next Steps OV, EV or Wildcard Certificates

Validating Via Email

Once the steps are completed, you will be sent an email containing a secure link to activate validation so the SSL can be generated and the files issued.

Validating via CNAME

A special unique CNAME is generated for each SSL validation request. This is obtained from the Sectigo Order Status Tool and will need to be entered via Account Manager to be added at their DNS Zone provider. No email confirmation will be needed to validate via CNAME, it may take 1-2 hours for this to be picked up by the Validation team and confirmed.

Validating via HTTP TXT File

A special unique MD5 Hash Code is generated for each SSL validation request. This is obtained from the Sectigo Order Status Tool. In order to use this method, take this information and create a .txt file that would be uploaded into their FTP site files. No email confirmation will be needed to validate via HTTP, it may take 1-2 hours for this to be picked up by the Validation team and confirmed.

Validation Phone call

In addition to validation steps either via email, CNAME or txt file, you will need to respond to an email that will trigger a verification phone call back. This is an automated call triggered by clicking on a link in the phone verification email. Once you click the link, an auto dialer will make a call and provide the customer a PIN. You will need to go to the phone verification email and click the link and enter the PIN.

Timeframes

Once the configuration and validation steps have been completed, the files will be issued, uploaded to your account manager, and you will be notified. The timeframe for validation to be completed and files issued vary depending on the type of SSL and how quickly the customer completes the validation steps.

Comments (0)