Important Update: WHOIS Deprecation for Domain Validation : ComodoSSLStore

Important Update: WHOIS Deprecation for Domain Validation Print

Modified on: Wed, Apr 9, 2025 at 6:45 PM

Effective Date: June 15, 2025

In response to recent vulnerabilities discovered in the domain name WHOIS system, there has been a significant shift in the way public Certificate Authorities (CAs), including Sectigo, will handle Domain Control Validation (DCV) for SSL/TLS certificates.

Due to these vulnerabilities, WHOIS-based domain validation via email addresses is no longer considered a secure method for verifying domain ownership. The CA/Browser Forum (CABF) is set to pass a ballot that will make WHOIS-listed email addresses unacceptable for domain validation starting June 15, 2025. This change will apply to all certificates issued by Sectigo, as well as other public Certificate Authorities.

Alternative DCV Methods:

While WHOIS-based email validation will no longer be supported, there are several alternative methods for domain validation that will continue to be available as :

EMAIL (only with the pre-constructed addresses):
- admin@yourdomain.com
- administrator@yourdomain.com
- webmaster@yourdomain.com
- hostmaster@yourdomain.com
- postmaster@yourdomain.com
DNS CNAME
HTTP file authentication

Feel free to explore our other knowledgebase articles for more information on alternative domain control validation methods.

Did you find it helpful? Yes No

Important Update: WHOIS Deprecation for Domain Validation Print

Alternative DCV Methods:

Related Articles