Skip to main content

Offering a comprehensive portfolio of TLS/SSL certificates to meet your needs

Let’s start by offering a few helpful definitions!

Domain, Organization and Extended Validation

TLS/SSL server certificates validate different information, based on the type of certificate purchased.

  • Domain Validated (DV): Lowest level of assurance. These are are server security certificates issued after proof that the owner has the right to use the submitted domain name. The issued DV server security certificate only contains the domain name. IdenTrust does not currently offer DV ONLY certificates, but domain validation takes place when issuing OV certificates. 
  • Organization Validated (OV): Most common level of assurance. OV certificates confirm that the domain name is authentic (DV validation); it is associated with the named organization, and that the organization and its registered address are authentic. The issued OV server security certificate contains the Fully Qualified Domain Name and the organization name. Unless otherwise indicated, all IdenTrust TLS/SSL certificates are OV certificates. BUY NOW  
  • Extended Validated (EV): Highest level of assurance. In addition to DV and OV validation requirements, EV certificates verify the address of the place of business, jurisdiction of incorporation, registration and other supplied information. The issued EV server security  certificate contains the organization name, the Fully Qualified Domain Name, the jurisdiction, when applicable,  the registration number and the address of the place of business. EV certificates activate both the padlock and the green address bar or other special treatment in most browsers. IdenTrust does not currently offer EV SSL certificates.

Government Trust vs. Public Trust

  • Government Trust: For those organizations that require a TLS/SSL certificate that is trusted by the government, IdenTrust offers a DoD ECA-compliant TLS/SSL certificate.

  • Public Trust: For those organizations that require a TLS/SSL certificate that is publicly trusted and native in most browsers, IdenTrust offers TrustID TLS/SSL certificates.

IRS Foreign Account Tax Compliance Act (FATCA) TLS/SSL Certificate

In order to electronically file FATCA reports via the IRS International Data Exchange Services (IDES) system, an organization must be issued an IRS-approved TLS/SSL certificate. IdenTrust is on the approved list of vendors authorized to issue IRS-compliant FATCA TLS/SSL certificates.

Single Domain vs. Multi-Domain

  • Single Domain: A single domain TLS/SSL certificate establishes a secure connection between a browser and a server. With TLS/SSL certificates, the communication is encrypted, assuring visitors that their information is secure and private. These certificates also authenticate an organization’s identity. This is confirmed by the visual appearance of a padlock next to the web address in the browser.

  • Multi-Domain: These certificates are ideal to secure multiple names across different domains and sub-domains and offer complete control over the Subject Alternative Name (SAN) field. A single multi-domain certificate will allow you to secure domains such as: www.identrust.com, www.identrust1.com, www.identrust2.net, www.sales.identrust.com or www.dev.identrust1.net.

Wildcard vs. Multi-Domain

Organizations who manage multiple websites hosted across numerous subdomains may choose a TrustID TLS/SSL certificate.

  • Multi-Domain: Organizations with more than one unique Fully Qualified Domain Name (FQDN) will benefit from selecting an IdenTrust TrustID Multi-Domain certificate, which also offers Organization Validated (OV) features that are important when you are operating an e-commerce or business website, so that your organization can be recognized. Up to four (4) FQDNs can be included in one multi-domain certificate. (Additional FQDNs can be added for a fee.)
  • Wildcard: IdenTrust TrustID TLS/SSL OV and EV certificates can support TLS/SSL Wildcard usage. In order to issue a Wildcard certificate, IdenTrust will perform authentication processes to confirm that the requesting organization has full control of the entire domain namespace. A Wildcard certificate includes an asterisk that is correctly positioned in the Fully Qualified Domain Name (FQDN) and will cover all sub-domain names associated with that domain. IdenTrust offers Wildcard TLS/SSL certificates via our Software-As-A-Service model only

Keeping these definitions in mind, you can select BUY NOW to use our certificate selection wizard or view our TLS/SSL product profiles for more detailed product features and pricing.

DoD ECA Single Domain TLS/SSL Certificate
TrustID Single Domain TLS/SSL Certificate
TrustID Multi-Domain TLS/SSL Certificate
TrustID FATCA IRS Reporting Single Domain TLS/SSL Certificate


To purchase a TLS/SSL certificate, simply select BUY NOW and use our Certificate Selection Wizard to determine the best certificate for your application.