SSL certificates encrypt the data between your web browser and the web server hosting the website, keeping sensitive data submissions such as billing details safe. If you see a lock icon beside the website name in your browser, the site has an SSL certificate installed and your information is secured. This article explains what an SSL certificate does, the role of the Certificate Signing Request (CSR), the certificate types Enom offers, and how validation and upgrades work.
Note: Purchasing a GeoTrust, RapidSSL, or Sectigo certificate for www.example.com secures the root domain example.com.
For all certificates, purchasing the certificate for any other subdomain covers only that specific subdomain. You must specify the exact subdomain when generating your CSR. Once a certificate is issued, the domain cannot be changed.
What an SSL certificate does
SSL certificates provide two important roles for the systems that use them.
- SSL certificates provide security by encrypting the data between the browser and the web server.
- SSL certificates provide identity verification through domain and organization validation. Only the verified domain name owner may purchase an SSL certificate for that domain. For organization-validated SSL certificates, only verified, approved representatives of the organization are permitted to buy an SSL certificate for domains in the organization.
CSR: Certificate Signing Request
A CSR, or Certificate Signing Request, contains your organization's name, domain name, location, and public key. This information is submitted to the SSL issuer before your certificate is issued. A CSR is generated on the web hosting service.
Types of certificates
SAN certificates cover three domains (subdomains) with the option to add more for an added fee. Wildcard certificates cover unlimited common names (subdomains) for one domain name.
| Multi-Domain (SAN) Certificates | Wildcard Certificates |
| Sectigo UCC DV (Domain Validated) | Sectigo Essential Wildcard |
| Sectigo UCC OV (Organization Validated) | Sectigo Premium Wildcard |
| RapidSSL Wildcard | |
| True BusinessID Wildcard |
Types of SSL certificate validation
| Type of Validation | Time frame | Validation method |
| DV – Domain validation | 1–2 business days | Only the verified domain name owner can purchase an SSL certificate for the domain. Validation is done via email sent to the domain owner. |
| OV – Organization validation | 1–3 business days | When corporate identity validation is important, an SSL certificate assures customers that the website is trustworthy and secure. Only verified representatives of the organization may purchase these certificates, and a business licence or other proof is required. The certificate authority verifies the request via a phone call to ensure it is legitimate. |
| EV – Extended validation | 1–10 business days | To be approved for an Extended Validation certificate, the certificate authority actively checks the organization and the individual applying for the certificate. This verifies that the organization is genuinely the organization it claims to be, and that the individual requesting the certificate is authorized to request a digital certificate. Extended validation may take as long as one week to complete. SSL for organizations or individuals. |
Upgrading an SSL certificate
Once you purchase a certificate, it cannot be upgraded. However, if you need a more secure certificate immediately, you can buy it and install it on the same web server as the old certificate. If you do not need the more secure certificate immediately, you can wait until the current certificate is near expiry to purchase the desired certificate.
Next steps
Questions? Contact Enom Support.
How helpful was this article?
Thanks for your feedback!
Do you still need help? If so please submit a request here.