🥇 SSL Certificates Support - SSLPOINT Australia's #1

SSL Certificates Support

Why are SSL certificates from SSLPOINT so cheap?

SSLPOINT offers a full range of SSL certificates from leading Certificate Authorities (Comodo, GeoTrust, Thawte and Symantec). Since we order many certificates in bulk we are able to get them at a very low price.

Thus ordering an SSL certificate at SSLPOINT will save you up to 75% compared to the retail price of the Certificate Authorities. You will get the same SSL certificate – just at a very low price.

What is SSL ?

The SSL protocol is the web standard for encrypting communications between users and SSL e-commerce sites. Data sent via a SSL connection is protected by encryption, a mechanism that prevents eavesdropping and tampering with any transmitted data. SSL provides businesses and consumers with the confidence that private data sent to a web site, such as credit card numbers, are kept confidential. SSL Certificates are required to initialize an SSL session.

Customers know when they have an SSL session when their browser displays the little gold padlock and the address bar begins with a https rather than http. SSL Certificates can be used on web servers for internet security and mail servers such as IMAP, POP3 and SMTP for mail collection / sending security.

128 and 256 Bit SSL Certificates are usually used to protect information whilst it is being entered into an online form, securing e-mail, servers and ftp.

What is a Wildcard Certificate ?

Wildcard certificates can be used to secure multiple sub domains on a single domain name. e.g. it secures shop.example.com, ssl.example.com, admin.example.com etc.

Please use *.example.com as common name with your Certificate Signing Request (CSR).

Can I secure an internal host name (server.local) ?

Internal host names are not longer allowed in certificates that are issued by trusted Certificate Authorities like Comodo, GeoTrust, thawte, Symantec and others. Certificate Authorities made a decision to deprecate the usage of reserved IP addresses and internal names for certificates, effective November 1st 2015. Certificates that have already been issued with an expiry date later than 01/Nov/2015 have to be revoked.

If you have ordered a Multi-Domain (UCC / SAN) SSL certificate that includes an internal domain name you may delete the internal host name(s) from the list of SAN and re-issue the certificate via the client portal.

More info can also be found in our blog: Learn more…

Can I Secure Multiple Domains ?

An SSL Certificate is issued to a fully qualified domain name (FQDN). This means that an SSL Certificate issued to “secure.example.com” cannot be used on different sub domains, such as “www.example.com”.

To get around this restriction we have Wildcard SSL Certificates. Wildcard SSL Certificates allow you to secure multiple sub domains on the same domain name, thereby saving you time and money, and of course you do not need to manage multiple SSL Certificates on the same server.

Most customers secure “ssl.example.com” and use wildcard SSL Certificates if their SSL requirements change.

How does the Authentication Process work ?

Domain Validated SSL Certificates

The Certificate Authority will send an email to approve the certificate request, either to the Administrative Contact listed in the WHOIS database for the domain name requested. You can also choose a generic email address during the order process like admin@example.com, administrator@example.com, postmaster@example.com, hostmaster@example.com or webmaster@example.com

After the certificate request has been approved by the domain contact, the certificate will be issued instantly.

Organization Validated SSL Certificates

The Certificate Authority will send an email to approve the certificate request, either to the Administrative Contact listed in the WHOIS database for the domain name requested. You can also choose a generic email address during the order process like admin@example.com, administrator@example.com, postmaster@example.com, hostmaster@example.com or webmaster@example.com

After the certificate request has been approved by the domain contact, you will have to send supporting business documents of the company to the Certificate Authority by postal mail, fax or email (PDF attachments). If the order is for a commercial entity you will need to send the following documents: Certificate of Incorporation, Business License, DUNS number (if applicable). If the Certificate Authority is unable to verify your documents, a Professional Opinion Letter from a lawyer or accountant may be needed.

It may take up to 10 business days until your certificate is issued.

SSL Certificates with Extended Validation (EV)

The Certificate Authority will send an email to approve the certificate request, either to the Administrative Contact listed in the WHOIS database for the domain name requested. You can also choose a generic email address during the order process like admin@example.com, administrator@example.com, postmaster@example.com, hostmaster@example.com or webmaster@example.com

After the certificate request has been approved by the domain contact, you will have to send supporting business documents of the company to the Certificate Authority by mail, fax or email (PDF attachments).

The Certificate Authority must be able to confirm all of the following organizational registration requirements:
Official government agency records must include:

  • The organization’s registration number.
  • The organization’s date of registration/incorporation.
  • The organization’s registered address (or the address of the organization’s registered agent).

A non-government data source (such as Dun & Bradstreet) must include the organization’s place of business address if it is not included in the Government agency records

If the organization has been registered for less than three years, the Certificate Authority must verify operational existence through one of the following means:

  • Through a non-government data source (such as Dun & Bradstreet) – or-
  • By verifying the organization has an active demand deposit account (such as a checking account) with a regulated financial institution through a Lawyer’s Opinion Letter or directly with the financial institution.

If the Certificate Authority is unable to verify your documents and/or telephone number, a Professional Opinion Letter from a lawyer or accountant may be needed.

It may take up to 10 business days until your certificate is issued.

How Long Does It Take To Issue My SSL Certificate?

Domain Validated certificates are usually issued within a few minutes.

As documentation has to be provided for Business Organization and Extended Validated certificates it may take 5-10 business days until your certificate is issued by the Certificate Authority.

How can I renew my existing certificate ?

A renewal of an existing certificate is similar to a new order:

* Kindly place your order online via our website
* Please submit a CSR for your host name
* After the validation process has been completed, a new certificate will be issued (with the new expiry date)
* Install this new certificate on your device to secure your application and server

The Certificate Authority will add up to 30 days to the expiry date of the new certificate.
You may renew your certificate early without losing any remaining days.

What Browsers Are Supported ?

Our SSL Certificates are compatible with IE 5.01+, Netscape 4.7+, Mozilla 1+, AOL 5+, Firefox, Safari and many newer Windows, Macintosh and Android based browsers. All certificates listed are trusted by over 99% of the popular browsers.

What Is Browser Ubiquity / Recognition ?

Browser ubiquity is the term used in the industry to describe the estimated percentage of internet users that will inherently trust an SSL Certificate. The lower the browser ubiquity, the less people will trust your certificate – clearly, if you are operating a commercial site you require as many people as possible to trust your SSL Certificate. As a general rule, any SSL Certificate with over 95% browser ubiquity is acceptable for a commercial site.

Ubiquity is however not the only consideration in deciding whether one SSL Certificate is better than another. Many companies running high transaction volume web sites need to maximize customer confidence and therefore buy certificates from well known, long time security vendors and mostly use the major players.

How To Generate Your Certificate Signing Request

The following links will take you to the CSR (Certificate Signing Request) instructions for various servers and control panels. The documentation is provided by our partners, click the relevant link below and it will open in a new window.

Generally the process for generating a CSR is the same for all SSL Certificate types, we recommend you review the documentation that came with your hosting control panel or server. Be sure to come back to our site to complete your order:

GlobalSign CSR Instructions
Comodo CSR Instructions
DigiCert CSR Instructions

You can also use our Online CSR Tool to create a new Private Key and a corresponding Certificate Signing Request (CSR).

Please contact us if you need support for an unlisted application.

What is a Certificate Signing Request (CSR) ?

A CSR (Certificate Signing Request) is required to order an SSL Certificate.

The CSR is generated from within your hosting control panel, web server software or server operating system software.

Required Intermediate Certificates (CA Certificates)

To successfully install your SSL Certificate you may be required to install an Intermediate CA Certificate.

Please review the next FAQ paragraph SSL Certificate Installation Instructions carefully to determine if an Intermediate CA Certificate is required, how to obtain it and correctly import it into your system.

You can download an intermediate certificate bundle for your product here:
https://www.sslpoint.com/ca-intermediate-certificates/

How To Verify Your SSL Certificate Installation

Please follow this link to check your SSL installation:
Qualys – SSL Server Test

How to export a Code Signing Certificate

To export your Code Signing Certificate, please follow these steps:

Internet Explorer
1) Please open the Internet Explorer on the PC you have used during the enrollment process
2) Click Alt-X -> Internet options -> Certificates
3) Please select your certificate from the list and click the “Export” button
4) Please select “Yes, export the private key”
5) You can now export your private key and certificate in PKCS12 (PFX) format

Firefox
1) Please open the Firefox browser on the PC you have used during the enrollment process
2) Click on -> Tools -> Options -> Privacy & Security -> Certificates -> View Certificates
3) Please select your certificate from the list and click the “Backup” button
4) You can now export your private key and certificate in PKCS12 (PFX) format

Hint: If your signing application needs a different file extension (e.g. p12 instead of pfx) please rename the exported file.