The Sectigo® OV + Multi Domain SSL Certificate secures several separate domain names on one SSL Certificate, using Subject Alternative Names (SANs), and carries a verified organization identity. It confirms your organization through Organization Validation (OV) and protects every secured name with strong encryption.
It suits a business that runs several websites, or a set of brand and subsidiary domains, and wants a checked identity to sit behind each of them. Coverage runs from a few names to hundreds, with more available as additional SANs, and the verified details apply to every secured name.
This SSL Certificate performs server authentication and can secure a service on any port. Common uses include websites, webmail, e-mail servers running Simple Mail Transfer Protocol (SMTP) and Internet Message Access Protocol (IMAP), Virtual Private Network (VPN) servers, remote desktop, and network appliances or routers.
More broadly, it works with any other server, software, or device that accepts an SSL Certificate to secure a connection from one point to another. For information about Client Authentication 🔗 please read about global regulated changes prior to purchase.
The sections below explain what the Sectigo® OV + Multi Domain SSL Certificate covers, how it is validated, and how to put it in place.
Multiple Names on One SSL Certificate
A multi-domain SSL Certificate secures several separate names on one SSL Certificate through Subject Alternative Names (SANs). The names can be different domains, such as example.com, example.net, and another-brand.com, along with subdomains, all under a single SSL Certificate.
Coverage runs from a few names to hundreds, and further names can be added as additional SANs when you need them. The same verified organization identity applies to every name on the SSL Certificate. Explore Multi Domain Coverage 🔗
Organization Validation
Organization Validation (OV) confirms that a real, registered organization stands behind the domains. The Certificate Authority (CA) checks your legal existence, registered address, and control of the domains against official records and independent sources before the SSL Certificate is issued.
Once all requirements are provided and the Certificate Authority (CA) has processed them, the SSL Certificate is issued within minutes. Automated checks handle much of the work, though some steps may need someone at your organization to respond or confirm details. Understand Organization Validation 🔗
The verified organization details are recorded inside the SSL Certificate itself and can be seen by inspecting it. They are not shown in the browser address bar, which looks the same as it does for a domain-validated SSL Certificate. The value is in the checked identity carried within the SSL Certificate, applied across every secured name.
If your organization has already been pre-validated, the process is streamlined and the SSL Certificate can be issued right away. Organizations that expect to order can choose to complete validation in advance; otherwise validation proceeds as normal once your order is submitted. Read the Validation Requirements 🔗
Domain Control for Each Name
Alongside the organization checks, control of each name on the SSL Certificate is confirmed on its own. For each name you can reply to an e-mail at an approved address, publish a Domain Name System (DNS) record, or place a file at a set location on that name.
Because each name is validated separately, names hosted on different servers or run by different teams can be handled independently. Understand Validation Methods 🔗
Adding and Changing Names
You can add more names during the term by purchasing additional Subject Alternative Names (SANs). The price is pro-rata, based on the validity remaining on your license, so a name added later in the term costs less than one added near the start.
Once you order an additional name, Trustico® reviews the order and decides the best way to add it. In most cases the team adds the name for you, and in some cases you receive an activation code to complete the addition yourself in the Trustico® Tracking System 🔗
Each newly added name has its control confirmed and carries the same verified organization identity before it is included, while the other names stay in place. To remove a name from the SSL Certificate, contact the Trustico® team and they will make the change for you.
USD $1,000,000 Warranty
Every Sectigo® OV + Multi Domain SSL Certificate carries a USD $1,000,000 Relying Party Warranty that covers the secured names. It gives financial cover in the unlikely event that the Certificate Authority (CA) issues the SSL Certificate in error, a higher level of cover than the domain-validated options.
You can reissue the SSL Certificate as often as you need at no charge, for example after changing your Private Key or moving to a new server. Review Warranty Details 🔗
Encryption and Protocols
The SSL Certificate uses a 2048-bit RSA key with 256-bit symmetric encryption, over the Transport Layer Security (TLS) 1.2 and 1.3 protocols, with SHA-256 hashing. Every secured name connects over HTTPS with the padlock shown.
It also supports the encryption requirements of the Payment Card Industry Data Security Standard (PCI DSS). Compare Encryption Algorithms 🔗
Trustico® Site Seal
Every order includes a complimentary Trustico® site seal that you can display on each secured site to reassure visitors. It works well on payment, sign-up, and contact pages, where confidence matters most.
The seal is added with a short piece of HTML. Explore the Trustico® Site Seal 🔗
Browser Compatibility
The SSL Certificate is trusted by around 99.9% of web browsers, including Chrome, Firefox, Safari, and Edge. Mobile devices on iOS and Android trust it without any additional configuration.
This wide recognition means visitors reach your secure sites without warnings. Understand Browser Compatibility 🔗
One SSL Certificate for Several Sites
A multi-domain SSL Certificate replaces the separate SSL Certificates you would otherwise order for each site, so one SSL Certificate and a single expiry date cover the whole group, each name carrying the same verified organization identity. That leaves far fewer dates and orders to track.
The saving grows with the number of names one SSL Certificate covers, and adding a name later is simpler than starting a new SSL Certificate for it. Everything stays in one place as the group changes.
Unlimited Server Licenses
The multi-domain SSL Certificate can be installed on as many servers as you need at no extra cost. This suits a set of sites that run on different infrastructure, such as separate hosts, cloud platforms, or content delivery endpoints.
The same SSL Certificate and Private Key are deployed to each server that serves a secured name. Where a server needs its own key, you can reissue as often as needed at no charge.
Verified Identity in Regulated and Business Settings
A verified organization identity is valued in regulated and business-to-business settings, where the other party wants confidence about who operates a service. Carrying that checked identity across every secured name supports the due diligence others may expect.
It does not, on its own, meet any specific compliance obligation, which depends on your own controls and circumstances. It is one useful signal of a legitimate operator, applied consistently across your domains. Compare Validation Levels 🔗
Installation
Installation begins with a Certificate Signing Request (CSR) for the primary name, together with your organization details and the additional names given during ordering. After validation, you deploy the issued SSL Certificate with the supplied intermediate chain files. Platform guides cover Apache, Nginx, Microsoft Internet Information Services (IIS), and other common web servers and control panels.
If you would rather have it handled for you, the Premium Installation service can carry out the work. Access Installation Guides 🔗
Support and Resources
The Trustico® website provides a large set of free guides, frequently asked questions, and online tools covering ordering, validation, and installation, so most questions can be answered without contact.
For help with placing an order or completing validation, the Trustico® team is available through the published contact methods. Browse the Trustico® Support Resources 🔗
Refund Policy and Price Promise
An order is a license that unlocks once the Certificate Authority (CA) completes validation. If validation cannot be completed beforehand, the value of the order is held as Trustico® Prepaid Credit for use on another SSL Certificate, domain, or product.
Once the SSL Certificate has been validated and issued, the license is active and refunds no longer apply. Requests outside this pre-validation protection are considered at the discretion of Trustico® through the refund request form. Review the No Risk Refund Policy 🔗
A price match against advertised prices from other providers applies both before and after you order, so your pricing stays competitive. Learn About The Trustico® Price Promise 🔗
Your SSL Certificate License
Your purchase is an SSL Certificate license for the term you choose, such as one or two years. A multiple year license fixes the current pricing for the whole term.
Because an individual SSL Certificate has a maximum validity set by industry rules, currently 200 days and subject to change, a longer license is kept current by reissuing the SSL Certificate during the term rather than by a single SSL Certificate covering the full period.
Reissues are free and unlimited across the license, and each gives the largest validity left on the term, so a reissue late in the license runs only to its end. The secured names and the verified organization identity carry across each reissue. Manage your reissues in the Trustico® Tracking System 🔗
A reissue is not the same as buying a new license. A reissue replaces the SSL Certificate within the license you hold, while a new license is a separate paid order, best placed about two weeks before the term ends to allow time to validate and install.
A notice is sent before the license period ends, though tracking the SSL Certificates installed on your own servers stays with you. You can read expiry dates from the server, use a monitoring service, or download calendar files for the license and SSL Certificate dates from the tracking system.
Suitable Uses
The Sectigo® OV + Multi Domain SSL Certificate suits an organization that runs several separate websites, a group of brand or subsidiary domains, or client and partner portals, all on one SSL Certificate with a verified identity behind each. It also covers development and staging names kept beside production.
It fits businesses and institutions dealing with other organizations, where a checked identity carries weight. Agencies and resellers securing many domains can keep management and billing simple. Learn About the Partner Service 🔗
Other Options
Where you need to secure only one name, the single site version carries the same Organization Validation on a single domain. Compare OV Single Site 🔗
Where a verified organization identity is not required, the domain-validated multi-domain option secures the same names at a lower price. Compare DV Multi Domain 🔗
For the most rigorous identity check across several names, an Extended Validation multi-domain option is available. Compare EV Multi Domain 🔗