Solved: Requesting 3rd CA to sign self-signed cert for cloud email security ces

Kirill Gulak · ‎01-06-2021

Hello Techs,

I would like to clear some points of signing a CSR obtained in CES device by 3rd party CA. In order to authorize domain I had to provide an email to pass a domain check. As it's outlined below in the guide

https://docs.ces.cisco.com/docs/ces-certificates#where-should-my-ca-send-the-domain-authorization-letter-dal

So, there is suggested to make use of below emails

The CA can send the DAL to any of the email addresses below:

dns-admin@iphmx.com
webmaster@iphmx.com
postmaster@iphmx.com
admin@iphmx.com
administrator@iphmx.com

Everything is clear so far. However, how is it going to be processed then? As CA providers guide to open an email sent to provided email address and go by link enclosed there along with putting codes ans so on. So, How that is going to be fixed by considering that I don't have an access to any above emails inbox.

Thank you!

Libin Varghese · ‎01-06-2021

The mentioned mailers are monitored by CES teams and would get approved by them automatically (usually takes a few hours).

You can also proactively raise a TAC case for confirmation and they would be able to get you that information.

Regards,

Libin

View solution in original post

Libin Varghese · ‎01-06-2021

The mentioned mailers are monitored by CES teams and would get approved by them automatically (usually takes a few hours).

You can also proactively raise a TAC case for confirmation and they would be able to get you that information.

Regards,

Libin

Kirill Gulak · ‎01-06-2021

Hello Libin,

Thank you for your prompt reply! So they make all needed steps outlined within authorization email on behalf of us. Right?

Thank you!

Libin Varghese · ‎01-06-2021

That is correct, since Cisco owns the primary domain iphmx.com DAL's received would be approved by the concerned team at Cisco.

Regards,

Libin