Buying an entry level SSL certificate should be a very simple process. The verification and authorization steps can all be automated, and should only take a few minutes at most. That’s how the other SSL certification authority I’ve been using works. I just cannot understand why GoDaddy makes it so complicated. Not only is it not automated, they seem to present silly stumbling blocks that messes up the verification.
What is wrong with GoDaddy?
- They insist on consulting the WHOIS database. But what if you are getting an SSL certificate for a domain name from a delegated zone of another name that is registered in WHOIS?
- Have they considered that the WHOIS contact people might not necessarily be the same fellows wanting to operate the SSL service? Different department? Outsourced to a different company? Or you’re trying to do this for your client, who is a branch of a big MNC?
- So GoDaddy provides some alternatives. Plant a domain verification code in the DNS domain, or plant it on the website. I’ve done both. Verification still failed.
- Apparently when the verification is stuck in some state, their technical support can’t get you out of it, or override and do some kind of manual fixup. The solution is to cancel the SSL certificate signing request and restart a new one.
- I seek help again about the domain verification code that I have planted, because from checking my network traffic, I am absolutely certain GoDaddy isn’t even attempting verification. Can you believe it, but their technical support tells me they can’t see my Domain Verification Code from their system, therefore I need to forward to them the email their system had sent me. What kind of verification is this? Then I can forward an edited email eh?
Well it is now about 20 hours since I started. What should have taken only about 5 minutes has dragged for so long, and involved so much technical support. Another gripe, though not a major issue, is that the screens that their technical support describe that I should click through doesn’t even match up with what their website actually shows me. I am able to figure out my way on my own, fortunately. But I can’t figure out how to get their verification to work.
I think this is just so thoroughly disappointing that a simple process of getting an SSL certificate from a well respected Internet name company is so broken.