Topics Map > Security > Certificates > SSL/TLS Certificates

How do I obtain a SSL certificate?

Only University faculty or staff members may request SSL certificates.

How do I obtain an SSL certificate?

Only University faculty or staff members may request SSL certificates.

Please visit the service page to get started: SSL/TLS Certificates

Submit your certificate request here: SSL/TLS Certificate Activation

To obtain a SSL certificate for your server, log in to the WebStore and select Unit Purchase (certificates are not available for Personal Purchase). Place an order for an “SSL Sectigo Certificate”.

We only offer 1-year and 2-year SHA256 digital certificates. We can only process requests for domains ending in “.uic.edu”; no local domains (“httpx://my-server”) nor IP addresses. All second-level domains (example.uic.edu) must be approved by the Chief Information Security and Privacy Officer.

After you have purchased your SSL certificate from WebStore use the order form to submit your request:

  1. Fully qualified domain name of the server (example: www-s.department.uic.edu)

  2. Primary contact email address (must be a University of Illinois faculty/staff or department email address)

  3. Secure HTTP server vendor and version (example: Apache 2.4.41, Tomcat 9.0.33, Microsoft IIS 8.0)

  4. Certificate signing request (CSR) generated by your secure server. A CSR is an ASCII text file that you create that looks something like this:

    -----BEGIN NEW CERTIFICATE REQUEST-----
    MIIBuzCCASQCAQAwezELMAkGA1UEBhMCVVMxETAPBgNVBAgTCElsbGlub2lzMQ8w
    ...[etc]
    +fj2LwNBrBaZo+ZFYput
    -----END NEW CERTIFICATE REQUEST-----

    SSL Comodo Wildcard Certificates

    We typically discourage the use of Wildcard Certificates as they introduce risks above and beyond that of single-site certificates. Due to the potential sensitivity of certain websites, this is even more of an issue.

    For example, if the cert were to be exposed/compromised, all systems using the cert would become vulnerable and need to be updated immediately. Also, loss of the cert, in combination with DNS spoofing, could lead to impersonation of any of the affected sites.

    Wildcard Certificate must be approved by ACCC’s CISPO. In such a request ticket, please provide a description of the need for and how you will be using the Wildcard Certificate. Using a multi-domain certificate instead of a wildcard is a highly-recommended solution for managing multiple domains on a single server.





Keywords:SSL InCommon Comodo Certificate, certificate signing request, CSR, SSL/TLS Certificates   Doc ID:93056
Owner:Jason R.Group:University of Illinois at Chicago ACCC
Created:2019-07-10 14:16 CDTUpdated:2020-06-15 17:53 CDT
Sites:University of Illinois at Chicago ACCC
Feedback:  0   0