SSL Certificates - Secure Server Certificates
出典: くみこみックス
SSL certificates are usually utilized with ecommerce shopping carts, or anywhere you want to collect data from a user securely on your internet site. If you use a secure server certificate with a form and that form emails the results to you keep in mind that the e-mail is not secure.
SSL (Secure Sockets Layer): Creates an encrypted link in between a internet server and a browser. CA (Certificate Authority): The vendor you will get the secure server certificate from...
What is SSL?
SSL certificates are typically employed with ecommerce shopping carts, or anywhere you want to collect info from a user securely on your web site. If you use a secure server certificate with a form and that form emails the results to you preserve in mind that the e-mail is not secure.
SSL (Secure Sockets Layer): Creates an encrypted link among a internet server and a browser. CA (Certificate Authority): The vendor you will get the secure server certificate from CSR (Certificate Signing Request): A text file generated by a net server. A CSR looks like this:
-----Begin NEW CERTIFICATE REQUEST-----
MIIDGgBNAGkAYwByAG8AcwBvAGYAdAAgAFIAUwBBACAAUwB
AG4AZQBsACAAQwByAHkAcAB0AG8AZwByAGEAcABoAGkAYwl
L0ygNwwNIvKLMPq4/LcUkZ9Oo4AssXW5mvvhHWGz2RWYRhrw8o
-----Finish NEW CERTIFICATE REQUEST-----
1st, you require to determine regardless of whether to use your hosting shared SSL certificate if they provide it. The URL to your retailer will appear one thing like:
https://theirserver.com/youruserid/your/path/to/shop.html
Or do you want to get your personal SSL certificate? The URL will appear like:
https://yourdomainname.com
If you decide to use your hosts' shared secure server certificate, then all you need to do is discover out the path you need to have to use to call your files securely, and you will be on your way.
If you make a decision to get your own SSL certificate, this is generally what happens.
You initial need to have to decide who you are going to get your SSL certificate from. It is a excellent notion to make confident your host supports your distinct vendor. Some certificate authority vendors are:
* Thawte
* Verisign
* Comodo
* You can also critique several vendors at a glance at WhichSSL
Before getting your personal SSL certificate, you will want to do some reading on what your selected Certificate Authority needs for a secure certificate, and you will also require to come up with some documentation. There are numerous actions to getting a secure server certificate, once you have decided on a vendor.
This is an overview, not written in stone. Every single CA is diverse, so make positive you read their documentation and what they need. Right here is an notion of what they want:
All documentation that is requested should match *precisely*. Secure certificate authorities will verify that your organization really exists, so they know they are issuing to the correct firm. You will need to prove that the Organization Name and the Domain name are in fact yours to use.
Actions you will be taking:
* Gather necessary documentation
* Have your host create a CSR
* Complete certificate authority on-line application
* certificate authority Certificate authority will procedure your request
* Pickup and install your SSL certificate (generally an URL is emailed to you to download the secure server certificate)
* Depending on the vendor, it can take a few hours to a couple of days.
* Send secure certificate to host internet authentication for installation. (Send in plain text)
As soon as your internet hosting provider receives this information they will produce the CSR and send it back to you in plain text. You then send it on to Verisign or Thawte, or whoever you have selected as your secure certificate authority. They will then produce a SSL certificate for you which you will send back to your host for installation. Your internet host might charge a fee for installation in addition to what your SSL certificate vendor charges.
One thing to believe about:
If you have decided to buy your own SSL certificate, you will require to make a decision how you want your URL to be called. If you, as a rule, call your domain name in your coding as www.yourdomainname.com, then make sure you indicate this to your host when you request a CSR from them. If you do not, and you get the certificate for yourdomainname.com (with out the www), this will result in browser errors, generating the certificate appear insecure, and you will need to have to alter your coding.
Constantly use your self or your business as technical get in touch with.
How to tell if a web site is secure?
Right after you have browsed to a site securely using https:// in the URL, look on the lower right hand side of your browser. You must see certificate authority a closed lock. This will tell you the website is secure.
