"OV" is 'Organization validation'. This validation take a bit longer than domain validation.
'EV' means 'Extended Validation' and provide the highest level of validation for SSL certificates.
As long as you're a legitimate business, this process is no problem.
As long as you're a legitimate organization this process will go smoothly. Remember, part of the reason this process even exists is to differentiate the legitimate businesses from the pretenders—including scam artists and cyber criminals. So, if you're working for an actual business, then you have nothing to worry about.
In this article you can see how the validation process works in 7 steps:
When you place an order at Openprovider, if the company is based in The Netherlands and the domain in the request is a .nl or a new gTLD then our system will perform a pre-validation check to check if all the data provided is correct and therefore validate your order faster. If the company is from another country than The Netherlands the order will be placed directly at Symantec without pre-validation check.
You can find more information about our pre-validation check here: http://support.openprovider.eu/hc/en-us/articles/220192227-Manual-for-Pre-validation-checks
In SSL panel you can always check the status of your order
The certificate has been requested at the Certificate Authority and they will start with the validation of the order.
The CA checks if the company is registered in the Chamber of Commerce with the details as given in the SSL order. The details submitted in the SSL order must match with the details of the company at the registry. If the company can't be found in the Chamber of Commerce they will inform you.
Organization authentication: Your Organisation must be registered with the appropriate Government Registration Agency in its country or state.
What is not allowed:
- Organisation misspellings
- Unregistered acronyms (e.g. ABC)
- Unregistered abbreviations
What is required:
- Your correct Organization (e.g. Ltd, Corp)
In other words, you must show that the company you are registering is a legally and lawfully-formed organization.
Submitting documents to us for this requirement will help us validate your organization. Symantec will contact the registering authority (RA) shown on the document to confirm the details of the document before we proceed.
If the document that you provide does not list the current address for your organization, you must also provide a recent utility bill or bank statement addressed to your company at the current address.
You can use email to send us your acceptable documents: firstname.lastname@example.org
Acceptable Documents Include:
- Business License/Certificate
- Certificate of Incorporation
- Business Registration Certificate
- Certificate of Existence with Status in Good Standing
- Certificate/Articles of Organization
- Public Records Filing for a New Business Entity
- Certificate of Formation
- Certificate of Assumed Business Name
- Trade Name Renewal Form
- Trade Name Registration Form
- Fictitious Business Name Statement
- Statement of Partnership Agreement
- General Excise Tax License
- Zoning Permit
- Transaction Privilege Tax License
- Sellers Permit
- Sales & Use Tax Permit
- Restatement and Revision of Partnership Agreement
- Privilege License
- Organization Action in Writing of Incorporation
- Occupational Tax Certificate/License
- Notary Public Identification Card
- Merchant's Certificate of Registration
- Filing receipt
- Filing endorsement
- Employer Identification Number Application
- Declaration of Proprietorship or Partnership Registration
- Corporation Estimated Tax Form
- Corporation Annual Report
- Corporate Charter
- Certificate/Articles of Amendment
- Certificate of Withholding Identification Number
- Certificate of Payment of Business Tax
- Certificate of Ownership for Unincorporated Business or Profession
- Certificate of Exempt Status
- Certificate of Change of Resident Agent and/or Location of Registered Office
- Certificate of Authority
- Certificate of Acceptance of Appointment by Resident Agent
Symantec must verify that the enrolling Organisation has the ability to engage in business. Operational Existence is satisfied if the Organisation has been registered and in existence for over 3 years. Alternative documentation may be requested for organisations registered for less than 3 years.
Symantec verifies the physical business address listed on a certificate enrollment. This must be a physical address, and not a P.O. Box, Lock Box, or care of address.
An independently obtained ‘third-party’ public telephone listing is used to find a telephone number for the Organisation at the verified address.
- Search ‘third-party’ public telephone listing...
- Telephone number match with verified address...
- Or you will need to provide alternate documentation.
Before each certificate can be issued, a verification telephone call, using an independently obtained ‘third-party’ public telephone listing for the Organisation within the country listed on the CSR, must be completed with the Organisational Contact. If Symantec is unable to reach the Contact directly, either a voicemail is left on the contact’s personal voicemail or e-mail is sent with instructions on how to contact Symantec to complete the final verification. Please note you can schedule appropriate date and time for Symantec validation call.
This is the last step of the validation. By default this validation is done by e-mail, but through our API or SSL panel you can change this to one of the other validation methods. More information about domain validation can be found on this article:
In SSL panel you can follow up the status of certificate and you can also take action to issue the order faster.