We want all our customers to use an SSL certificate. It is easiest if we can supply them from a-z. If this is not convenient, we certainly want to be flexible. You can submit your certificate yourself.
Option 1
We create the CSR and send it to you. The private key remains in our possession and it does not matter how the certificate is sent to us, because we are in possession of the private key. In this way we can also guarantee our agreements with regard to the SLA.
Option 2
Do you also want to do this yourself? How do you deliver this in a safe way? The best option is to send everything GPG encrypted. The files may be together in the same bundle. This can only be decrypted by our employee. How it is sent to us does not matter since it is only decrypted by our employee. see also securing with GPG.
Zip with password A zip with a password is insecure and therefore it is impossible for us to guarantee the SLA. Passwords like: Welcome2021 or SSL123! are not recommended at all.
Comments
0 comments
Article is closed for comments.