Ordering and Retrieving SSL/TLS Certificates

This how-to will walk you through the process of ordering and retrieving an SSL/TLS server certificate.

NOTE: Domain Validation is required when ordering any SSL/TLS server certificate. SSL.com customers should follow the DV procedure below as well as any extra validation steps required when procuring OV (Organization Validated) or EV (Extended Validation) Certificates.

1. Click the Buy Now! button, under Basic SSL, Wildcard, SAN/UCC, or Enterprise EV, on the SSL.com homepage. Alternately, you can click the Buy Now! button on the certificate product page.

Click buy now! button


2. Select a duration for your certificate order, then click Add To Cart.

Select duration


3. In the shopping cart, you can change the quantity of SSL certificates, remove them from your cart, or return to shopping with the Shop More button. When your order is complete and correct, click Checkout.

Shopping cart


4. If you are not already logged into your SSL.com account or do not have an account yet, you will be prompted to login or create a new account at the Checkout screen. If you have an account, select I do and I want to log in now, enter your username and password, then click Next >>.Login


5. If you do not have an SSL.com account, select I do NOT but I want to create one, fill in the requested information (username, email address, password, and billing information), then click Next >>.

Create account


6. If your account contains existing funds, they will be applied to your purchase. If your account does not contain sufficient funds, you will be prompted to add more. Click Next >> when your account has sufficient funds to complete the transaction.

Apply existing funds


7. If your order has been successfully placed, you will see a green bar near the top of the browser window, reading “Order successfully placed. Click here to finish processing your ssl.com certificates.” Click the link.

Click here to finish processing your ssl.com certificates


8. On the screen that opens, find your certificate order and then click the submit csr link, located in the Action column.

Submit CSR


9. At this point, you will need to submit a Certificate Signing Request (CSR) for the server that will be utilizing the new SSL/TLS certificate. It is always best to generate your CSR and key pair on the web server where you will install the certificate. A list of links to instructions for CSR generation on various platforms (IIS, cPanel, Plesk, and others) can be found in this FAQ.


10. Fill in the necessary fields to submit your CSR, then click Next >>. A complete guide to CSR submission can be found in our article, Your SSL.com Account – Submitting a CSR.

Submit CSR


11. On the next screen, enter your company details, then click Next >>.

Enter company information


12. On the next screen, click + Create Contact and then fill in the on-screen form and click Create to add a contact to the order. You must create at least one contact for the certificate, but you can also add more if desired.

Enter contact information


13. When you are finished adding contacts, click Next >>.


14. Next, select a method for domain validation. You can validate your control of the domain via email, by adding a CSR hash file to your website, or by creating a DNS record. See our article, What Are The Requirements for SSL.com SSL/TLS Certificate Domain Validation? for complete details on these different methods.

Domain Validation


Email validation is simple and straightforward. To validate via email, you will need to have control of one of the authorized email addresses for domain validation:

  • webmaster@
  • hostmaster@
  • postmaster@
  • administrator@
  • admin@
  • Any email address in the WHOIS record for the domain that is visible to SSL.com

When you have selected a validation method for the domain names the certificate will cover, click Validate, then OK in the confirmation dialog box that pops up.


15. If you chose email validation, you will receive an email message with a 20-character validation code. Copy and paste the code into the input field, then click Submit. If you chose another method, continue with the instructions for that method.

Enter validation code


16. If everything has been done correctly up to this point, your domain has been validated and your certificate is ready for download.

Note: When your certificate is issued, you will also receive an email message with a full certificate chain attached, including your server certificate, SSL.com intermediate, and SSL.com and Certum roots.

Domains validated


17. Click the Orders tab, then the download link (located in the Action column).

Download certificate


18. Click the download link specific to your platform to download a zip file containing your certificate files.

Choose platform


19. After downloading, install the certificate following the instructions specific to your platform:

A list of links to instructions for certificate installation on other platforms can be found in this FAQ on the subject. If you have any problems or questions, please do not hesitate to contact us at support@ssl.com, call 1-877-SSL-SECURE, or just click the chat link at the bottom right of this page.