[Skip navigation links]

Domain approval procedures for QuoVadis

The following guidelines are provided for users of the AusCERT Certificate Service provided by QuoVadis.

Transition arrangements

For all existing users of the AusCERT Certificate Service that sign up to the QuoVadis service, AusCERT will work with QuoVadis to pre-enroll/approve existing domains associated with their organisation.  Only domains that are a match can be pre-approved and added to TrustLink.

For domain Registrants that do not a match your organisation's name, we will provide a list of domains for which Domain Authority Letters or changes to the domain whois record are required.  The procedures are outlined below.

 

Routine arrangements

Before any certificate can be obtained that includes a domain or host name, the domain (the Fully Qualified Domain Names or internal hosts or IP addresses) must be added to TrustLink and approved by QuoVadis.

Agent Administrators can add domains as required.  Where the domain "Registrant" name is a match for the organisation's name, QuoVadis will check and approve the domain within one business day.

Before adding a new domain, first check whether the domain has already been added and approved for use in TrustLink.  To do this, see page 25 of the TrustLink Administrator Guide.

Reserved (private) IP addresses and internal host names

As of November 1, 2015, these are not permitted in any QuoVadis SSL certificate.  For further details see the TrustLink Subscriber Guide, page 10.

For further details about adding new domains, viewing and managing domains in TrustLink, see page 25 of the TrustLink Administrator Guide.

Domain Authority Letters (DAL)

For FQDNs or public IP addresses, where the Registrant name is not a match for the organisation's name, then a Domain Authority Letter is required before QuoVadis will approve the domain and certificates can be requested for that domain.

Agent Administrators should follow the following steps, as appropriate:

A.If the domain Registrant is another company or organisation, then do the following:

Ask an authorised representative/employee of that company or organisation to draft and sign a Domain Authority Letter using company/organisation letterhead as follows:

Dear QuoVadis,

I [Insert Name] am an authorised employee of [insert company or organisation that is the Registrant for the domain] and hereby authorise [insert name of the requesting organisation] to request SSL certificates for [insert the domain] registered to [insert company or organisation that is the Registrant for the domain] now and until further notice. 

Alternatively, rather than specifying the particular domain, the DAL may specify "all domains owned and ..." if  this is preferred.

The DAL should be scanned and emailed to QuoVadis the following address:  or faxed to:  +44 (0) 333 666 3000

Then complete the steps to Request the domain via TrustLink.  See page 25 of the TrustLink Administrator Guide.


B.If the domain Registrant is a person who is not employed by the requesting organisation, then do the following:

Ask the person named as the Registrant to draft an email using the email address listed for them in the domain's whois record with the following words:

Dear QuoVadis,

I [Insert Name] hereby authorise [insert name of the requesting organisation] to request SSL certificates for the domain [insert the domain], which is registered to me now and until further notice. 

 Send the email to QuoVadis: 

Then complete the steps to Request the domain via TrustLink.  See page 25 of the TrustLink Administrator Guide.


Changes to the domain whois record 

C.If the domain Registrant name is a person and employee of the requesting organisation, and the domain really belongs to the requesting organisation which is listed in the address of the whois record, then do the following:

Ask the person named as the Registrant to modify the domain whois record and put the organisation name as the Registrant instead of theirs.

 Then complete the steps to Request the domain via TrustLink.  See page 25 of the TrustLink Administrator Guide.