No more WHOIS based domain email validation method

Google will ban the WHOIS-based domain validation on the 15th of January 2025. It was done in view of the fact that WHOIS had allowed WatchTowr Labs to obtain fraudulently issued certificates. Google created the ballot to ban the use of WHOIS to identify domain contacts, which was accepted by the CA/B Forum. As a consequence, the WHOIS-based Domain Control Verification (DCV) Email method will no longer be available. Moreover, certificate authorities (CAs) will not be able to use WHOIS-based DCV methods for certificate renewal.

We recommend using other DCV methods due to these changes. You will have to change your WHOIS-based certificate validation method to other validation methods (such as standard DCV Email or DNS approval) at the earliest prolongation.

How does this affect me?

WHOIS-based email validation will be unavailable for the Netherlands from 15th January 2025 and this ban will be extended to all other countries from 14th of June 2025. Certificates with this validation method will not be issued or reissued from 15th of June 2025. You must use alternative methods such as DNS, HTTP or pre-approved email.

There is no impact on the existing certificates. For the earliest renewal, you have to use either the standard DCV Email or DNS approval for domain validation.

If you have any questions or need assistance with switching to a new domain validation method, you can contact our support chat on our website www.leaderssl.com or contact us at info@leaderssl.com.