The Sectigo® EV Single Site SSL Certificate secures a single domain with Extended Validation (EV), the deepest identity check a Certificate Authority (CA) carries out. It establishes, in detail, that a real and properly registered organization operates the website, alongside strong encryption.
It is intended for organizations that want the strongest possible identity assurance, such as banks, insurers, and businesses handling high-value transactions. Securing www.example.com also covers the root domain example.com at no additional cost.
This SSL Certificate performs server authentication and can secure a service on any port. Common uses include websites, webmail, e-mail servers running Simple Mail Transfer Protocol (SMTP) and Internet Message Access Protocol (IMAP), Virtual Private Network (VPN) servers, remote desktop, and network appliances or routers.
More broadly, it works with any other server, software, or device that accepts an SSL Certificate to secure a connection from one point to another. For information about Client Authentication 🔗 please read about global regulated changes prior to purchase.
The sections below explain how the Sectigo® EV Single Site SSL Certificate is validated, what it includes, and how to put it in place.
Extended Validation
Extended Validation (EV) applies the most demanding checks of any validation level. It confirms your organization's legal registration, its registered address, its telephone listing, and its operational existence, and it checks that the person requesting the SSL Certificate is authorized to act for the organization.
Automated checks help where they can, while certain steps need you to respond, acknowledge, and complete an action so the requirements are satisfied. As soon as everything is in place and the Certificate Authority (CA) has processed it, the SSL Certificate is issued within minutes.
If your organization is already pre-validated, the steps are streamlined and the SSL Certificate can be issued right away. You are free to complete validation ahead of an order; if not, validation runs as usual once the order is submitted. Understand Extended Validation 🔗
Verified Identity in the SSL Certificate
Extended Validation writes your verified organization identity into the SSL Certificate, where it can be seen by inspecting the SSL Certificate. It occupies the same place as an Organization Validation identity, arrived at through more demanding checks.
That identity does not appear in the browser interface. The indicator browsers once showed for Extended Validation has been retired across the major browsers, so trust now rests on the verified record and the padlock rather than a marker in the address bar. Read about the Green Address Bar 🔗
USD $1,750,000 Warranty
Each Sectigo® EV SSL Certificate carries a USD $1,750,000 Relying Party Warranty, the largest across the validation levels. It gives financial cover in the unlikely event that the Certificate Authority (CA) issues the SSL Certificate in error.
The SSL Certificate can be reissued as often as you need at no charge, for example when you rotate a Private Key or migrate to new servers. Review Warranty Details 🔗
Encryption and Protocols
Protection is built on a 2048-bit RSA key with 256-bit symmetric encryption, running over the Transport Layer Security (TLS) 1.2 and 1.3 protocols with SHA-256 hashing. Visitors see the padlock and connect over HTTPS.
The encryption also supports the requirements of the Payment Card Industry Data Security Standard (PCI DSS). Compare Encryption Algorithms 🔗
Trustico® Site Seal
A complimentary Trustico® site seal comes with every order and can be placed on your website to reassure visitors. It works well on payment, sign-up, and contact pages, at the moments confidence counts most.
The seal is added with a short piece of HTML. Explore the Trustico® Site Seal 🔗
Browser Compatibility
The SSL Certificate is trusted by around 99.9% of web browsers, including Chrome, Firefox, Safari, and Edge. Mobile devices on iOS and Android trust it without any additional configuration.
This wide recognition means visitors reach your secure site without warnings. Understand Browser Compatibility 🔗
Where the Deepest Validation Helps
A fully verified organization identity carries weight in regulated, financial, and high-value settings, where clients, partners, and auditors want firm confidence that a genuine, thoroughly checked organization runs a website. It strengthens due diligence, without standing in for any particular compliance obligation your organization holds.
Banks, insurers, healthcare providers, and enterprises handling sensitive or high-value transactions often select this level for the depth of its checks and the size of its warranty. The assurance sits alongside the same strong encryption offered at every validation level.
Root Domain Included Free
Securing www.example.com automatically covers the root domain example.com at no cost, added as a secured Subject Alternative Name (SAN). Entering the www version of your domain is recommended, so the root is reliably in place.
A root domain entered on its own usually brings in the www version free in the same way. Any free additional name is subject to the same validation as the primary domain, and it may be left off the SSL Certificate if that check cannot be completed.
Where several separate names must be secured with certainty, such as the www and root together or another combination, a Multi Domain product is the stronger fit. Every name is listed in full and the SSL Certificate is issued only after all are validated. Explore Multi Domain Options 🔗
Installation
Installation starts with a Certificate Signing Request (CSR) that carries your organization details. After validation, you deploy the issued SSL Certificate with the supplied intermediate chain files. Platform guides cover Apache, Nginx, Microsoft Internet Information Services (IIS), and other common web servers and control panels.
If you would prefer to hand it over, the Premium Installation service can complete the work for you. Access Installation Guides 🔗
Support and Resources
The Trustico® website holds a broad set of free guides, frequently asked questions, and online tools spanning ordering, validation, and installation, which answer most questions without contact.
For help with placing an order or completing Extended Validation, the Trustico® team is available through the published contact methods. Browse the Trustico® Support Resources 🔗
Refund Policy and Price Promise
An order is a license that unlocks once the Certificate Authority (CA) completes validation. If validation cannot be completed beforehand, the value of the order is held as Trustico® Prepaid Credit for use on another SSL Certificate, domain, or product.
Once the SSL Certificate has been validated and issued, the license is active and refunds no longer apply. Requests outside this pre-validation protection are considered at the discretion of Trustico® through the refund request form. Review the No Risk Refund Policy 🔗
A price match against advertised prices from other providers applies both before and after you order, so your pricing stays competitive. Learn About The Trustico® Price Promise 🔗
Your SSL Certificate License
Your purchase is an SSL Certificate license for the term you choose, such as one or two years. A multiple year license locks in the current pricing for the whole term.
Because an individual SSL Certificate has a maximum validity set by industry rules, currently 200 days and subject to change, a longer license stays current by reissuing the SSL Certificate through the term rather than by one SSL Certificate covering the entire period.
Those reissues are free and unlimited, and each grants the most validity left on the term, so a reissue near the end lasts only until the term closes. Where your organization details are unchanged, the existing validation can often be carried over. Manage your reissues in the Trustico® Tracking System 🔗
A reissue is different from buying a new license. A reissue swaps the SSL Certificate within the license you hold, whereas a new license is a separate paid order, best placed about two weeks before the term ends to leave time to validate and install.
A notice is sent before the license period ends, though tracking the SSL Certificates installed on your own servers remains your responsibility. You can read expiry dates from the server, use a monitoring service, or download calendar files for the license and SSL Certificate dates from the tracking system.
Suitable Uses
The Sectigo® EV Single Site SSL Certificate suits banks, payment providers, insurers, and healthcare systems that want the deepest identity verification on a customer-facing website. It fits online banking, patient portals, checkout pages, and any service where the strongest identity assurance is valued.
It also fits fintech platforms, government suppliers, and professional firms whose clients expect a fully checked identity behind sensitive or high-value transactions. Where the deepest checks are more than a site needs, Organization Validation or Domain Validation is a lighter choice.
Lower Validation Options
Organization Validation verifies your organization with a lighter set of checks than Extended Validation, giving a verified identity at a lower level of assurance. Compare Organization Validation 🔗
Domain Validation secures a domain quickly with no organization checks, for sites that do not need a verified identity. Compare Domain Validation 🔗