On July 15, 2021, DigiCert will update the public SMIME certificate validation processes to align with the Gmail s/MIME policy that requires Certificate Authorities (CAs) to:
To comply with the above requirements, the following S/MIME public certificate fields will be strictly validated before issuing by any supported enrollment flow (e.g., web-based, API).
Email address used for the Common Name must match the email on the certificate
If the certificate request contains an email address in the Common Name field but does not match other email fields, we will block the certificate issuance.
Organization and address information validation for S/MIME certificate in the Subject Distinguished Name (Subject DN)
If the certificate request has an organization or address information in the Subject Distinguished Name (Subject DN) but does not match the information registered for your organization, DigiCert will block the certificate issuance.
The affected Subject DN fields, with respective organization information that needs to be validated against, are listed below:
Certificate Field - Organization Information: