TLS Server Certificates

What Is It?

A server certificate is needed to enable Transport Layer Security (TLS) operation on a server (typically a web server), which verifies the server's identity to clients (typically web browsers), and enables encryption to secure communications from eavesdropping and maintain the integrity of the data transmitted. To avoid warning dialogs issued by web browsers, the certificate must be digitally signed by a trusted third party, a Certificate Authority (CA). UIC currently provisions certificates using Sectigo as our CA.

A valid TLS certificate is required to ensure secure server communications.

InCommon SSL (SHA-2)

By default, we issue Organization Validation (OV) TLS/SSL Certificates which are a step up from Domain Validation (DV) Certificates because they prove that you have a relationship with the university. Like DV certificates, OV certificates show trust indicators in browsers like the padlock icon and the string https:// before the website domain.

InCommon Multi-Domain SSL (SHA-2)

Also commonly referred to as SAN certificates, multi-domain TLS/SSL allow a single certificate to secure multiple domains, including sub-domains of a single main domain name or entirely different domain names. One of these can secure up to 250 unique domains with a single solution. They provide a convenient option for units that own a lot of domains and are looking for a simplified way to secure them through a single solution rather than purchasing an individual certificate for each.

Features

  • InCommon SSL (SHA-2) & InCommon Multi-Domain SSL (SHA-2) SAN certificates are available
  • The maximum certificate duration is 398 days
  • The Sectigo Network Agent is available for the automation of certificate creation, installation, and renewal

Requirements

  • TLS server certificates are available for servers with a UIC.EDU FQDN
  • Certificate Signing Request (CSR) that's created from a 2048-bit or larger key pair
  • Revocations are not automatically performed when a certificate renewal is requested

Applicability

TLS server certificates can only be issued within the UIC.EDU domain. Certificates requests are usually processed within 2 business days.

Certificates can be renewed any time before the expiration date and for convenience certificate expiration warnings messages are sent to the registered requesters 28, 7, and 1 day(s) prior to expiration. Emergency renewals cannot be guaranteed for certificates that have expired.

Who Is Eligible To Use It?

  • Faculty
  • Staff

Where Can I Get It?

Select the Request TLS Server Certificate button located on this page.

How Do I Use It?

How to Generate a CSR

Free Online SSL Convert Tool by Sectigo Store

Installing network agents :: Sectigo Certificate Manager Documentation

How Much Does It Cost?

This service is funded by the University; there are no direct costs to clients.

How Can I Get Support?

If you are experiencing a problem with this service, please report it. If you just have a question, feel free to ask us.

Service Levels

Service Request Fulfillment Time 2 business days
Incident Resolution Time 2 business days
Service Availability 24x7
Maintenance Window(s) Approved Technology Solutions maintenance window(s)
Service Notification Channel(s) IT Service Notices
 
Request TLS Server Certificate

Related Articles (2)

How do I generate the Certificate Signing Request (CSR) for my SSL certificate?
Only University faculty or staff members my request SSL certificates.
How do I obtain a TLS or SSL certificate?
Only University faculty or staff members may request SSL certificates.

Details

Service ID: 459
Created
Mon 12/21/20 7:38 PM
Modified
Mon 8/21/23 1:45 PM
Service Owner
This person is accountable for the overall performance of this service. This is not a support contact.
Service Review Date
Date of the most recent review of this service.
08/26/2024