Digital India

Answers to all your SSL questions

  • Basic Information about SSL

    • What is SSL ?

      • SSL (Secure socket layer) is a standard security technology that provides secure communications between a web server and a browser. SSL uses a combination of public key and private key encryption to protect sensitive information like credit card numbers, login credentials, email addresses, etc. Furthermore, HTTPS, padlock and green address bar ensure users for a safe website browsing and online transactions.

    • What is a Domain Validated (DV) Certificate?

      • Domain Validated (DV) SSL Certificates deliver the easiest & quickest solution to secure a domain since only the domain name is verified during the validation process. Anyone who can demonstrate control of a registered domain can get this SSL security within minutes of ordering. DV certificates are suitable for small or start-up businesses.

    • What is an Organization Validated (OV) Certificate?

      • To receive an Organization Validated (OV) SSL certificate the customer must demonstrate control of a registered domain and provide certain pieces of company information that Certificate Authority (CA) can verify using third-party sources. The OV certificate is a good solution for business sites to increase user trust as the certificate certifies and displays company information to prove ownership of the website.

    • What is an Extended Validation (EV) Certificate?

      • An Extended Validation (EV) certificate is the premium SSL certificate. It provides great assurance to customers by providing the Green Bar within the browser URL window, which is a global symbol of trust. Extended Validation (EV) SSL certificates provide a secure connection and provide visible proof to establish business identity validation.

    • How do I get the Green Bar on my Website?

      • An Extended Validation (EV) SSL Certificate is only the certificate that provides the Green Bar.

    • What is a Wild Card Certificate?

      • A Wildcard SSL Certificate secures a single main domain (domain.com) and an unlimited number of subdomains (mail.domain.com, blog.domain.com, login.domain.com etc.) A wildcard certificate is annotated with an asterisk, as in *.domain.com.

    • What is Multi Domain or SAN Certificate?

      • Multi Domain or SAN (Subject Alternative Names) certificate protects multiple domain names with a single certificate (domain.com, example.net, website.org etc)

    • What is the difference between Wild Card and SAN Multi Domain functionality?

      • A wildcard certificate secures a single domain (domain.com) and an unlimited number of sub-domains at a specific level. A multi-domain (SAN) certificate protects multiple domain names (domain.com, newdomain.org, otherdomain.com) under one certificate.

        Check our video for more CLICK HERE

    • How can I use 256 Bit Encryption ?

      • 256 bit encryption is supported by all the certificates provided by us.

    • What is the difference between SHA1 and SHA2 ?

      • SHA stands for Signature Hashing Algorithm which is used by the Certificate Authority to sign a certificate. SHA-1 is an older version of the algorithm and produce a 160-bit (20-byte) hash value. SHA-2 is the current hashing algorithm standard.

    • Can I see which Certificate Authorities have their Trusted Root present in Browsers?

      • Yes, we deal in most well-known brands in SSL industry, and their root is available in most on the known browsers. They come with 99% browser compatibility and browser ubiquity.

    • What is the SSL Certificate Warranty?

      • SSL Certificate Warranty provides protection if your SSL is misused, hacked or met with a data breach due to flaws in the certificate. All the certificates which we provide come with SSL warranty.

    • How Long are SSL Certificates valid for ?

      • SSL Certificate we provide are valid from 1-3 years .EV Certificates can be ordered only for max 2 years and DV & OV certificates can be obtained for up to 3 years.

    • What is an intermediate Certificate?

      • An Intermediate Certificate is a CA Certificate that completes the chain between an SSL certificate and the trusted root in the web browser.

    • Can I use SSL to secure my internal domain?

      • Internal domains can be secured through SSL but it must be an official registered domain (a publicly available FQDN). SSL certificates will not be issued for internal domains if it is not a registered or delegated domain.

    • What is the difference between 128 and 256 bit encryption?

      • The main difference is the key length after establishing an SSL connection in the browser. But practical purpose, 128 bit security is enough to ensure security. The only reason 256-bit security is needed is if it's specifically required by your industry or company policy.

    • How many domains can be secured under SAN multi-domain certificate?

      • You can secure up to 100 domains under SAN certificates though the figure might change with the change in the SSL brand.

    • I have changed my server, or moved to a different provider, how do I move the certificate?

      • For security reasons, you will need to have your SSL Certificate re-issued in these instances. You will need to create a new CSR and share it with us so that we can reissue the certificate.

    • Will the SSL Certificates provided by you be compatible with my customer's browsers ?

      • All major web and mobile browsers are compatible with the SSL certificates provided by us.

        If there are some browsers which are incompatible with it, then those browsers are either very old, and nobody uses them anymore, or they are custom made browsers, and again, very few or no people use them.

    • You want to change the Common Name after the certificate has been issued.

      • Thirty Days (30) from the date of issuance of certificate, you can contact us to make changes to the certificate like Common Name change, Organization change, etc. After the given time span, we will not be able to make changes.

    • Can I get free reissues of my certificates?

      • Yes, all the certificates which we provide comes bundled with free reissues features within the expiry of the certificate

    • What servers will the SSL certificate support.

      • The SSL certificates are universal in nature and will support all the servers which are capable of doing SSL handshaking. SSL Certificates are not server specific.

    • Does the certificate support TLS ?

      • Yes, all the certificates which we provide support TLS protocol. But in order to use it, the certificate is dependent upon the server settings. In short, whatever protocols or ciphers are enabled on the server, the certificate will support it.

    • What platforms can I sign For?

      • You can use following platforms to sign -

        1. Any Microsoft format (32 and 64 bit), EXE, OCX, MSI, CAB, DLL, and kernel software
        2. Adobe AIR applications
        3. JAVA applets
        4. MS Office Macro or VBA (Visual Basic for Applications) files
        5. Microsoft Silverlight applications or XAF files

    • Can I upgrade my current OV certificate to EV certificate?

      • NO, you have to procure a complete new EV certificate .

    • I ordered my certificate but chose the wrong type of web server - how do I know if my SSL Certificate and Server are compatible?

      • The web server details are for our records and support purposes only. The certificates are the same format irrelevant of the web server chosen.

    • How do I request for a quotation ?

      • For a quotation request you can perform a offline transaction, after the transaction is completed you can download invoice which you can use as a quotation.

    • SSL Certificate Country Codes

      • SSL Certificate Country Codes

        Find your Country Code from the list provided below

        Country Codes are required when creating a Certificate Signing Request. The SSL Certificate Country Codes that you need to enter when creating your CSR are as follows:

        1. US United States of America
        2. CA Canada
        3. AX Åland Islands
        4. AD Andorra
        5. AE United Arab Emirates
        6. AF Afghanistan
        7. AG Antigua and Barbuda
        8. AI Anguilla
        9. AL Albania
        10. AM Armenia
        11. AN Netherlands Antilles
        12. AO Angola
        13. AQ Antarctica
        14. AR Argentina
        15. AS American Samoa
        16. AT Austria
        17. AU Australia
        18. AW Aruba
        19. AZ Azerbaijan
        20. BA Bosnia and Herzegovina
        21. BB Barbados
        22. BD Bangladesh
        23. BE Belgium
        24. BF Burkina Faso
        25. BG Bulgaria
        26. BH Bahrain
        27. BI Burundi
        28. BJ Benin
        29. BM Bermuda
        30. BN Brunei Darussalam
        31. BO Bolivia
        32. BR Brazil
        33. BS Bahamas
        34. BT Bhutan
        35. BV Bouvet Island
        36. BW Botswana
        37. BZ Belize
        38. CA Canada
        39. CC Cocos (Keeling) Islands
        40. CF Central African Republic
        41. CH Switzerland
        42. CI Cote D'Ivoire (Ivory Coast)
        43. CK Cook Islands
        44. CL Chile
        45. CM Cameroon
        46. CN China
        47. CO Colombia
        48. CR Costa Rica
        49. CS Czechoslovakia (former)
        50. CV Cape Verde
        51. CX Christmas Island
        52. CY Cyprus
        53. CZ Czech Republic
        54. DE Germany
        55. DJ Djibouti
        56. DK Denmark
        57. DM Dominica
        58. DO Dominican Republic
        59. DZ Algeria
        60. EC Ecuador
        61. EE Estonia
        62. EG Egypt
        63. EH Western Sahara
        64. ER Eritrea
        65. ES Spain
        66. ET Ethiopia
        67. FI Finland
        68. FJ Fiji
        69. FK Falkland Islands (Malvinas)
        70. FM Micronesia
        71. FO Faroe Islands
        72. FR France
        73. FX France, Metropolitan
        74. GA Gabon
        75. GB Great Britain (UK)
        76. GD Grenada
        77. GE Georgia
        78. GF French Guiana
        79. GG Guernsey
        80. GH Ghana
        81. GI Gibraltar
        82. GL Greenland
        83. GM Gambia
        84. GN Guinea
        85. GP Guadeloupe
        86. GQ Equatorial Guinea
        87. GR Greece
        88. GS S. Georgia and S. Sandwich Isls.
        89. GT Guatemala
        90. GU Guam
        91. GW Guinea-Bissau
        92. GY Guyana
        93. HK Hong Kong
        94. HM Heard and McDonald Islands
        95. HN Honduras
        96. HR Croatia (Hrvatska)
        97. HT Haiti
        98. HU Hungary
        99. ID Indonesia
        100. IE Ireland
        101. IL Israel
        102. IM Isle of Man
        103. IN India
        104. IO British Indian Ocean Territory
        105. IS Iceland
        106. IT Italy
        107. JE Jersey
        108. JM Jamaica
        109. JO Jordan
        110. JP Japan
        111. KE Kenya
        112. KG Kyrgyzstan
        113. KH Cambodia
        114. KI Kiribati
        115. KM Comoros
        116. KN Saint Kitts and Nevis
        117. KR Korea (South)
        118. KW Kuwait
        119. KY Cayman Islands
        120. KZ Kazakhstan
        121. LA Laos
        122. LC Saint Lucia
        123. LI Liechtenstein
        124. LK Sri Lanka
        125. LS Lesotho
        126. LT Lithuania
        127. LU Luxembourg
        128. LV Latvia
        129. LY Libya
        130. MA Morocco
        131. MC Monaco
        132. MD Moldova
        133. ME Montenegro
        134. MG Madagascar
        135. MH Marshall Islands
        136. MK Macedonia
        137. ML Mali
        138. MM Myanmar
        139. MN Mongolia
        140. MO Macau
        141. MP Northern Mariana Islands
        142. MQ Martinique
        143. MR Mauritania
        144. MS Montserrat
        145. MT Malta
        146. MU Mauritius
        147. MV Maldives
        148. MW Malawi
        149. MX Mexico
        150. MY Malaysia
        151. MZ Mozambique
        152. NA Namibia
        153. NC New Caledonia
        154. NE Niger
        155. NF Norfolk Island
        156. NG Nigeria
        157. NI Nicaragua
        158. NL Netherlands
        159. NO Norway
        160. NP Nepal
        161. NR Nauru
        162. NT Neutral Zone
        163. NU Niue
        164. NZ New Zealand (Aotearoa)
        165. OM Oman
        166. PA Panama
        167. PE Peru
        168. PF French Polynesia
        169. PG Papua New Guinea
        170. PH Philippines
        171. PK Pakistan
        172. PL Poland
        173. PM St. Pierre and Miquelon
        174. PN Pitcairn
        175. PR Puerto Rico
        176. PS Palestinian Territory
        177. PT Portugal
        178. PW Palau
        179. PY Paraguay
        180. QA Qatar
        181. RE Reunion
        182. RO Romania
        183. RS Serbia
        184. RU Russian Federation
        185. RW Rwanda
        186. SA Saudi Arabia
        187. SB Solomon Islands
        188. SC Seychelles
        189. SE Sweden
        190. SG Singapore
        191. SH St. Helena
        192. SI Slovenia
        193. SJ Svalbard and Jan Mayen Islands
        194. SK Slovak Republic
        195. SL Sierra Leone
        196. SM San Marino
        197. SN Senegal
        198. SR Suriname
        199. ST Sao Tome and Principe
        200. SU USSR (former)
        201. SV El Salvador
        202. SZ Swaziland
        203. TC Turks and Caicos Islands
        204. TD Chad
        205. TF French Southern Territories
        206. TG Togo
        207. TH Thailand
        208. TJ Tajikistan
        209. TK Tokelau
        210. TM Turkmenistan
        211. TN Tunisia
        212. TO Tonga
        213. TP East Timor
        214. TR Turkey
        215. TT Trinidad and Tobago
        216. TV Tuvalu
        217. TW Taiwan
        218. TZ Tanzania
        219. UA Ukraine
        220. UG Uganda
        221. UM US Minor Outlying Islands
        222. US United States
        223. UY Uruguay
        224. UZ Uzbekistan
        225. AE United Arab Emirates
        226. VA Vatican City State (Holy See)
        227. VC Saint Vincent and the Grenadines
        228. VE Venezuela
        229. VG Virgin Islands (British)
        230. VI Virgin Islands (U.S.)
        231. VN Viet Nam
        232. VU Vanuatu
        233. WF Wallis and Futuna Islands
        234. WS Samoa
        235. YE Yemen
        236. YT Mayotte
        237. ZA South Africa
        238. ZM Zambia
  • Issuance, renewals and Reissues

    • I only want a trial certificate, why do you validate those applications?

      • Your trial certificate is a fully-functional SSL Certificate, with exactly the same browser ubiquity and encryption as our other certificates. This is so that you can fully-test your systems prior to roll-out. As such, the trial certificate must be validated to the same standard as other certificates in our range. This validation process is utilized for every application put to us.

    • We've already been validated by one Certification Authority; do we still have to be validated by another CA?

      • Yes, it needs to be validated again as because every CA has its own stringent rules of validating the information provided to them.

    • I have ordered a certificate from you before. Do I need to send my documentation again?

      • Yes, you have to go ahead & send us the documentation once again as it will be considered as a new purchase

    • How long will it take to issue my certificate?

      • The time required to issue a new SSL certificate depends on many factors. The SSL certificate type, the validation process, and how quickly you respond with requested information from us or the certificate authority communications.

    • Will the SSL Certificates provided by you be compatible with my customer's browsers?

      • All major web and mobile browsers are compatible with the SSL certificates provided by us.

        If there are some browsers which are incompatible with it, then those browsers are either very old, and nobody uses them anymore, or they are custom made browsers, and again, very few or no people use them.

    • Can I have multiple SSL Trial Certificates?

      • Your trial certificate is a fully-functional SSL Certificate, with exactly the same browser ubiquity and encryption as our other SSL Certificates. This is so that you can fully-test your systems prior to roll-out. As this is a free service we have to limit the number of trial certificates that we offer.

    • If I renew within 90 days of my certificate expiring can I get the new SSL certificate to include the lost days?

      • Yes. If you want to renew your certificate within 90 days prior to certificate expiration then we can migrate existing days to the new certificate you want to purchase.

    • Can I not simply extend the dates on my old certificate?

      • No, you have you generate a fresh CSR and share it with us so that we can issue a certificate.

    • You want to change the Common Name after the certificate has been issued.

      • Thirty Days(30) from the date of issuance of certificate, you make changes to the certificate like Common Name change, Organization change, etc. After the given time span, you will not be able to make changes.

    • Can I get free reissues of my certificates?

      • Yes, all the certificates which we provide comes bundled with free reissues features within the expiry of the certificate

    • Why do you ask for documentation when I apply for a certificate?

      • Certificate Authorities recognizes that strong validation is essential for the continuing growth of ecommerce. Before issuing a certificate we need to validate both that the applicant owns, or has legal right to use, the domain name featured in the application and secondly that the applicant is a legitimate and legally accountable entity. To do this we need to have access to documentation which verifies these two factors.

    • If I buy a Domain Validated Certificate , which document(s) I need to provide?

      • You do not need to provide any documentation in order to purchase a Domain Validated (DV) certificate. All you will need to do is confirm that you own the domain you wish to cover by confirming the DRC mail which you will receive for the CA end.

    • If I buy a Organization Validated Certificate , which document(s) I need to provide?

      • Organization Validated (OV) verification requires checking your business registration. If the Certificate Authority (CA) can verify this information using online government databases, no additional documents will be required. However, if the online filings are not available or inaccurate or not up to date, the CA may request additional official government registration documents, which vary on a case-by-case basis.

    • If I buy an Extended Validated Certificate, which document(s) I need to provide ?

      • Please find the list of documents to be provided given below :-

        a) SSL Documentation Form,

        b)Acknowledgement of Agreement letter

        c)Professional Opinion Letter (if required)

    • I haven’t received my Domain Control Validation email yet. What to do?

      • Certifying Authority(CA) will resend the DRC mail or POL (Professional Opinion Letter) is an alternative.

    • How do I reschedule a phone verification call?

      • In order to reschedule this, please contact us and provide your availability. Please note, not all telephone numbers are suitable. The number must be verified by the Certificate Authority (CA), so please confirm the number that the CA will be calling.

    • I completed the validation, but never received certificate?

      • After completing validation, We will send the certificate to the email address you provided as your technical contact in proper format. If the technical contact does not receive the email, please contact us after checking your Spam and Junk Mail folders.

    • Can I use the email address listed in the Whois to complete the Domain Control Verification ?

      • Yes, you can do this for EV, OV and DV Certificates.

    • How long will the validation take ?

      • It depends on the type of certificate and the validation process of the Certificate Authority. Domain Validated (DV) Certificate can take a few minutes to a business day, Organization Validated (OV) Certificate can be issued within 2-3 days to be issued and Extended Validation (EV) Certificate usually take around 5-10 business days to be issued.

    • My verified Phone Number is no more active. What Should we do ?

      •  We can mention your  number which you will be providing in POL (Professional Opinion Letter) and can get it verified for the CA to call you .

  • Technical

    • What size keys does SSL Certificate use?

      • The public key that is created on your server must be a minimum of 2048 bits, depending on your server software. This public key will be contained within your digital certificate. The private key, which is used to sign your SSL Certificate, is a minimum 2048 bit.

    • Do all the certificates support 256 bit Encryption?

      • No, they support the key size as determined by the web server or browser, if the web server or browser can only negotiate 40 or 128 bit then this is the session that is established. 

    • Why does the website say the SSL certificate is "Untrusted" ?

      • The most likely cause is that an intermediate certificate has not been loaded. Please visit our SSL Certificate Installation instructions in our Online Support Center to confirm that your Certificate has been properly installed.

    • When trying to go to the site over HTTPS it displays the message 'The page cannot be displayed'?

      • This error normally occurs due to following reasons:

        1. The website’s files are not in the https directory on the web server. This can be verified by trying to get to the file using a regular, unsecured “http” call, and checking if the web pages are loading correctly. In order to correct this problem, please add the files to the https directory defined in the SSL configuration of the web server.
        2. Port 443 is blocked by server's firewall or the end-user's firewall. In order to correct this, you must open up port 443 (for both inbound and outbound traffic) on the server's or user's firewall.
        3. The https server is down. This can be verified by checking your respective web server’s task manager. Please ensure that the server running https service is up.
        4. Incomplete SSL certificate. In this particular case, it is possible that your SSL certificate does not have a corresponding private key file. Please refer to the appropriate installation documents on our support site for your web server, and verify that you've installed the SSL certificate correctly by having the corresponding private key file.

    • The page loads over https without error, however, the padlock does not appear.

      • This happens only when the website is having mixed content issue. In short, the website is requesting http connections over https because of which the padlock is not visible. Please contact your web developer team to help you resolve this issue.

    • You receive a warning stating that the page contains both secure and non-secure items.

      • This can occur if you are forcing the web server to load content over http rather than https when you are in SSL mode. Check your HTML code and ensure that you have no references to files or graphics that start with src=http://www. yourcompany.com/directory/file.gif.

        If you do have reference like this, they must be relative, such as src=/directory/file.gif or absolute using https, such as src=https://www.yourcompany.com/directory/file.gif.

    • You receive the error message "The name of the security certificate is invalid or does not match the name of the site"

      • This error occurs when the certificate is being used on a different fully qualified domain name (FQDN) than the one for which it was issued. For example, if your certificate was issued to www. yourcompany.com, using it on secure. yourcompany.com will result in a name mismatch error.

        You may also see this Security Alert if you have not installed the intermediate certificate and rebooted your server.

    • How do I check if the certificate is using latest protocol?

      • Internet Explorer :- Internet Explorer can display the protocol version information. Just hit File->Properties or Right-click -> Properties, and a window would open, under Connection.

        Firefox :- click the padlock icon (on the left of the URL), then More Information and then under the Technical Details.

        Chrome :- Click on the padlock icon; a popup appears, which contains some details, including the protocol version.

        For browsers which do not show the information, you can always obtain it running a network analyzer like Wiresharkor Network Monitor

    • How many SSL Certificates are required for Load Balancing?

      • If the Load balancer is facing the internet and is doing the SSL offloading, then you require just One SSL Certificate. The point of a load-balancer is that all your servers appear to the client as one.

    • Do I need a dedicated / Static IP Address to use SSL Certificate ?

      • Assuming you will be hosting your services behind a domain name, not the IP address (e.g. http://myservice.com, not http://192.168.0.1) the IP address for an SSL does NOT need to be static, it just needs to be dedicated. The problem you're going to have with hosting an SSL service on a dynamic IP address is that you will need to set up your DNS to 'follow' your IP address around.

    • What is Subject Name Indication (SNI) ?

      • IP addresses are limited, requiring every website to have its own IP address can cause problems in the long term. Server Name Indication (SNI) is the solution to this problem. Browsers that support SNI will immediately communicate the name of the website the visitor wants to connect with during the initialization of the secured connection, so that the server knows which certificate to send back. This allows browsers/clients and servers supporting SNI to connect multiple certificates for multiple domain names to one IP address. In that case, a visitor to your website will not notice any difference.

    • My browser is not showing the green padlock / green bar .Why ?

      • There may be several reasons behind why the browser is not showing the green bar or green padlock, check out the most common reasons below -

        1. The issued certificate may be with the SHA-1 hash algorithm. And now browsers trust on the SHA-2 so you need to reissue the certificate with the SHA-2 hash algorithm.
        2. If your HTML elements of the site are linked with http then it may be seen as insecure content and need to update via your system administrator.
        3. Your certificate is issued from an intermediate file and if missing or invalid is, then the green padlock may not show. Make sure that you have installed this alongside your certificate on your server. Your SSL provider can provide this file if you don't have.
        4. In case of incorrect certificate. If you installed an old expired certificate or a certificate provided by your hosting company or a self-signed certificate on the site. You will need to identify the source of the incorrect certificate and contact that party to resolve the issue.

         

    • Why does the website say that the name of the certificate does not match the name of the website ?

      • There may be some specific reasons, when the common name in the certificate and URL in the browser are not EXACT match, when www. is missing in the browser or domain in the certificate, if the web host's certificate is incorrectly assigned to your domain name and sometimes it also happens if you purchased a certificate which not cover the specific subdomain/ domains that you are looking at.

    • What is the difference between 1024 and 2048 bit key length ?

      • The 1024bit was the old industry standard for SSL certificates. Since 2010 this length is no longer safe enough.The largest certification authorities and their partners have already quit accepting root keys shorter than 2048bit.

    • Which is better 4096 or 2048 bits ?

      • It doesn’t really matter if your SSL certificate has 4096bit or 2048bit root key, because both are uncrackable.Most of the certificate authorities support both 2048 and 4096 root key length.Current and most recent browsers support certificates upto 4096

    • What is Certificate Transparency (CT) ?

      • Over the past few years, there have been several fake SSL  certificates created, due to lapses at certificate authorities (CAs) and sometimes through compromised server infrastructure. These fake SSL certificates can be utilized to masquerade as legitimate, secure websites, appearing to be verified and authentic, fooling web browsers, so users can't tell that a site they're visiting is not secure.

        SSL certificates are essentially the underpinnings of the HTTPS protocol. These certificates are signed by a trusted CA, and each certificate is issued only after it has passed a number of validations to ensure the certificate is requested by the real owner of that domain.

        Google's Certificate Transparency is an open source project that aims to fix "structural flaws in the SSL certificate system, which is the main cryptographic system that underlies all HTTPS connections," according to the project's website, certificate-transparency.org.

        Certificate Transparency does not stop bad certificates from being issued. Instead, as the name implies, it allows people to look at all certificates that have been issued by a CA. This is achieved using centralized logging to a collection of servers. These log servers talk to one another, to ensure consistency and reveal any unusual activity. Anyone can query the log servers to find out details on certificates that have been issued to anyone, by anyone. For example, a company could check to see what certificates have been created using its domains and details. Other CAs are free to add log servers, and many more will likely appear over time as the popularity of CT increases

         

  • Site Seal

    • What is a Site Seal

      • A Site Seal is when you purchase a SSL certificate. This Site Seal provides a stamp of legitimacy on your site. It provides a dynamic proof that the CA has verified your business or your organization. This prominently displayed smart site seal guarantees online visitors they will receive the highest level of encryption possible. Clicking the seal reveals the authenticity of your site.

  • Code Signing

    • What is a Code Signing Certificate?

      • Code signing certificate is a digitally signed certificate that used to prove that the code has not been altered or corrupted since it was signed by the author. You can sign many different types of codes including .exe, .cab, .dll, .ocx, and .xpi files.

    • How Do I use Platform's Signing Tool?

      • The most common platforms are Microsoft, JAVA, Adobe, Android, etc… The platform is used by developers to sign their applications using specific tools. Each platform is different.

    • Why can't I download my code signing certificate ?

      • You may face trouble to download the code signing certificate and this may happen due to several different reasons. First, if you are not using the default browser which you used to generate CSR or if you are not using browser properly, then you will receive an error message. Second, if you are not using the same PC which generated the order, in this case if you use a different PC than the corresponding private key will be missed and you will not able to download code signing certificate.

  • SSL Installation

    • What is a private key?

      • A private key is important for SSL installation and it should be kept privately on your server. You should not expose it to your SSL provider or other users. If you have lost or deleted your Private Key, then you must generate a new CSR .

    • I have accidentally deleted my private key. what should I do ?

      • First check your backups and see if you can reinstall the "private key". If you don't know how to re-install the key from your backups, then contact your system administrator, or you can call us for technical support.

        The Last Resort is reissuance of the SSL Certificate. To reissue your SSL Certificate, you will need to create a new CSR and submit it to us so that we can reissue the certificate.

    • My Certificate works on my browser, but it gives an error " The certificate is not issued by a trusted Authority"

      • The most likely cause is that the intermediate certificate has not got installed. Please install the intermediate certificate  to resolve the issue.

  • CSR Generation

    • What is a CSR?

      • A Certificate Signing Request (CSR) is an encoded file that is generated on the server for all SSL Certificates. The CSR file includes information that identifies your organization and domain name.

    • When I generate a CSR what do I put in the Common Name field?

      • Please Use the domain name you wish to have the SSL Certificate issued to in the Common Name field when generating your CSR. Do not include the "http://" when entering the domain name, nor any slashes with subfolders after the domain name.

    • Can I use my old CSR?

      •  If you use the original CSR and someone has previously acquired the Private Key without your knowledge then you are at risk of attacks during encrypted sessions.
        If you use a new CSR then anyone possessing the Private Key looses the ability to decrypt your encrypted sessions when you apply the new certificate issued from the new CSR.

Symantec
Thawte
GeoTrust
RapidSSL

Recent Blog Posts

Questions?

Call Us

If you have any questions, feel free to call us

Newsletter Subscription

  • VISA
  • Master Card
  • AMEX
  • Net Banking
  • Debit Card
  • Demand Draft