How does the organization validation (OV) of SSL certificates with ACME work?

The ACME protocol only automates domain validation (DV) by providing a corresponding file via the web server or creating an entry in the domain's DNS zone. This proves that you or the server on which the ACME client is running have full control over the domain.

With EuropeanSSL, you can also obtain SSL certificates with so-called "Organization Validation" (OV). In this case, the validation is not carried out by the ACME client but is done once a year in advance through our customer interface. Certificates with organization validation are issued in such a way that the name of the organization is listed on the certificate. This is particularly recommended for authorities, larger companies, service providers with increased security requirements, or operators of portals where users enter sensitive data.

Set up ACME account for OV certificates

If not already done, you must first create an ACME account of the type "OV" in your customer interface. Domains that are activated for such an account will automatically receive organization-validated certificates when retrieved by the ACME client.

Conducting company validation

Before you activate a domain or apply for a certificate, apply for a company validation in the customer interface. During this process, the name, address, and contact details of your company will be requested. In a multi-step process, the CA will verify the validity of the information, match it with public registers, and authorize it through a telephone callback. This process can take 2-3 business days.

Once the company validation is in the status "valid", you can activate one or more domains for it. The validation process itself is free of charge, but higher costs than for purely domain-validated certificates will be incurred for domain activation.

Obtain SSL certificate with OV

You now have an ACME account of type "OV" with one or more activated domains linked to a valid organization validation. This means all prerequisites are met, and you can obtain certificates for said domains as usual through your ACME client. The necessary commands do not differ, and no additional parameters are required. It is only important that you use the correct ACME account with the appropriate EAB credentials.

Validity period

A company validation is generally valid for only 1 year, regardless of the chosen duration of the ACME account. Please renew it regularly, as this does not incur any additional costs.

Product Outbound email filter prevents blacklisting and protects your company's reputation

Product Legally compliant email archiving with EuropeanMX

Product Email Filter

Product Inbound spam filter to protect against spam, viruses and malware

Product Exchange & Office 365

Product Eunetic Partner Program: High-Quality Security Solutions for Your Customers

Product Domain Validation SSL

Product Organization Validation SSL

Back to the index...

Was this article helpful?

No Yes

You may also be interested in...

Year in review: The top cyber security threats of 2023 and how to prepare for 2024

The year 2023 has been packed with technological advances, which has also evolved the tactics used by cybercriminals to exploit vulnerabilities and compromise sensitive data.

18.01.2024 IT Security

The importance of regular security audits for your IT infrastructure

In this article, we tackle the critical issue of regular security audits and discuss why these audits are essential, their benefits, and how they work.

31.05.2024 IT Security

The effects of the GDPR on IT security

This article looks at the impact of the GDPR on IT security and explains its role in strengthening data protection safeguards, reshaping cybersecurity strategies and promoting a culture of data protection.

21.06.2024 Data protection

Exploring the Variances Between Email Encryption and Email Authentication

Unlock the secrets of email security! Dive into our comprehensive guide on the crucial roles of email encryption and authentication, their mechanisms, benefits, and best practices.

04.04.2025 E-Mail

Secure Your Business Email Accounts: 10 Essential Steps

Discover how to fortify your business email against cyber threats! Learn the top 9 essential steps in our latest guide to boost your email security and protect sensitive data.

30.05.2025 E-Mail

How to detect and avoid a phishing attack

Protecting Your Business from Phishing Attacks: Types, Dangers, and Prevention Strategies. Learn how to recognize and avoid phishing attacks to safeguard your company's data and reputation.

06.10.2023 IT Security

How to protect your company from insider threats

Insider threats are another major threat to organizations, in addition to external threats. In this article, you will learn what exactly insider threats are, why they arise and how you can protect your company against them.

20.10.2023 IT Security

Security Considerations for Cloud Services

Cloud services offer notable advantages such as scalability, cost-efficiency and accessibility, but also raise significant security concerns that cannot be overlooked. As organizations migrate their operations to the cloud, ensuring the security of sensitive data and resources becomes a priority. While the cloud offers unmatched convenience and flexibility, it also brings new challenges that organizations must address comprehensively.

01.03.2024 Cloud

Top WAF Features to Look for in 2025

Discover the future of web security! Learn the top WAF features in 2025, from AI integration and zero-day attack protection to advanced threat intelligence and API security. Stay ahead in cybersecurity!

27.12.2024 WAF