CERTInext Sandbox Notes
The quick pick guide
Need | Product to choose | Sectigo Equivalent |
|---|---|---|
One normal hostname, no SANs | InCommon OV SSL Certificate |
|
Multiple hostnames / SANs | InCommon OV SSL Certificate UCC |
|
One wildcard, such as | InCommon OV SSL Certificate Wildcard |
|
Wildcard plus additional SANs | InCommon OV SSL Certificate Wildcard UCC |
|
Research grid / e-Science / IGTF use case | InCommon RSA IGTF Server or related IGTF product |
|
“Just validate domain control, no org identity” | InCommon DV SSL Certificate UCC |
|
EV / extended legal identity | InCommon EV SSL Certificate UCC, but usually not needed |
|
SANs here is UCC, which is CERTInext/InCommon’s “multi-domain / SAN certificate” bucket.
DV, OV, EV
Term | Meaning | What gets validated | Typical use |
|---|---|---|---|
DV | Domain Validated | Control of the domain only | Basic TLS where organization identity in the cert is not important |
OV | Organization Validated | Domain control plus organization identity | Public university services, institutional systems, most normal enterprise TLS |
EV | Extended Validation | More intensive legal/entity validation | Rarely needed now; often finance/legal/high-assurance branding workflows |
What the shape words mean
Term | Meaning | Example |
|---|---|---|
Single Domain | One FQDN |
|
UCC | Multi-domain / SAN certificate |
|
Wildcard | Covers one DNS label under a domain |
|
Wildcard UCC | Wildcard plus SANs |
|