All Products
Search

This Product

    Certificate Management Service:Handle CA review results

    Document Center

    Certificate Management Service:Handle CA review results

    Last Updated:Mar 31, 2026

    After submitting a certificate application, the certificate moves through the following stages before it is ready to deploy:

    1. Validating application — The certificate authority (CA) is reviewing your application and verifying domain ownership.

    2. Failed — The review did not pass. Fix the issue and submit a new application.

    3. Issued — The CA approved the application. Download or deploy the certificate.

    Prerequisites

    Before you begin, ensure that you have:

    Check the review status

    1. Log on to the Certificate Management Service console.Certificate Management Service console

    2. In the left navigation pane, choose Certificate Management > SSL Certificate Management.

    3. On the Official Certificate tab, find your certificate and check the value in the Status column.

    Stage 1: Validating application

    How long the review takes

    Certificate typeTypical issuance timeTimeout
    DV (Domain Validated)1–15 minutes when information is correctAutomatically fails after 2 calendar days
    OV (Organization Validated) and EV (Extended Validation)5 calendar days when information is correct and you cooperate activelyAutomatically fails after 30 calendar days

    Track review progress

    Click the 状态标签 icon in the Status column, then click View Progress in the dialog box.

    Review progress dialog

    DV certificates

    No action required. The CA processes your application automatically and issues the certificate when approved.

    OV and EV certificates

    The CA contacts you within one business day (extended during holidays). Cooperate with any verification requests promptly to avoid delays.

    Note

    If the information you provide is correct and you cooperate actively, OV and EV certificates are typically issued within five calendar days. If you do not receive a phone call or email within 5 business days, contact your account manager.

    Phone verification

    CA staff call the contact phone number you provided in the certificate application. Keep the line open to receive the call.

    Email verification

    The CA sends a domain verification email to the contact email address you provided. Check your inbox — including your spam and promotions folders — and follow the instructions in the email.

    The email content varies by certificate brand. The following is an example for reference only. Use the actual email you receive.

    GlobalSign
    GlobalSign verification email exampleGlobalSign verification email

    Stage 2: Failed

    When a review fails, the Status column changes to Failed.

    If the review fails, modify the incorrect application information based on the reason provided, especially the company qualification information. Then, resubmit the certificate application as soon as possible to prevent disruptions to your business.

    View the failure reason

    Click the image icon in the Status column, then click View Cause in the dialog box.

    Common failure reasons

    Domain name verification failed or was not completed

    Complete domain name ownership verification. See Domain name ownership verification for instructions.

    Company phone number is empty or incorrect (OV/EV)

    Enter a correct and reachable company phone number. The CA must be able to reach you at this number during verification.

    Company information verification failed (OV/EV)

    The CA verifies company information through public channels. Update your company information on a public platform so the CA can find and confirm it.

    Company information is inconsistent with the domain-authenticated company (OV/EV)

    Confirm the authenticated company name with your domain name provider. Then, in the Certificate Management Service console, go to Comprehensive Management > Company Profile Management and update the company information. See Manage company information. After correcting the information, resubmit the certificate application.

    CSR file has already been used for another order

    Each SSL certificate requires a unique key pair. Generate a new certificate signing request (CSR) file and use it for the new application.

    Note

    Generate the CSR using the Certificate Management Service console. System-generated CSRs are correct by default, and the console also lets you download the issued certificate in multiple formats.

    Domain name format is incorrect

    A domain name can contain only letters, digits, and hyphens (-), and must be no longer than 64 characters. Check the domain name in both the CSR file and the order before submitting.

    Common Name field in the CSR is incorrect

    The Common Name field must be the primary domain name bound to the certificate. Create and upload a new CSR with the correct Common Name.

    Stage 3: Issued

    When the CA approves the application, the status changes to Issued.

    Certificate validity period

    The Validity Period column shows the expiration date. Validity starts on the issuance date.

    • Official Certificate: valid for 12 months

    Complimentary domain name

    If you purchased a single-domain certificate or a wildcard certificate, the CA may include a complimentary domain name certificate depending on the brand and certificate type. See Conditions for complimentary domain names and Formats and rules for complimentary domain names for details.

    The complimentary domain name for a single-domain certificate appears on the certificate list page as shown below:

    Complimentary domain name on certificate list page

    What's next

    Deploy the issued certificate. See Select an SSL certificate deployment solution to find the deployment option that fits your environment.