Certificate Lifecycle Management (TLS/SSL)

Zoom logoSecure Sockets Layer (SSL), is a cryptographic protocols that provide communication security over the Internet.

Benefits & Features

It uses asymmetric cryptography for authentication of key exchange, symmetric encryption for confidentiality and message authentication codes for message integrity. Several versions of the protocols are in widespread use in applications such as web browsing, electronic mail, Internet faxing, instant messaging and voice-over-IP (VoIP).

University of Nebraska uses SSL certs from InCommon

Cost Savings - Unlimited certificates for a fixed annual fee takes the guess work out of budgeting.

Comprehensive - Includes all of your domains — .edu and non-edu alike, such as athletics and professional societies.

Ease of Use - Through Sectigo's certificate manager interface, certificates are easy to order and install.

Contracted with Sectigo - A leading commercial provider of certificates.

Private Label Certificate Authorities - Intermediate CAs with campus-specific profiles and practice statements are available to members who desire this functionality for an additional cost.

Getting Started

Please see InCommon's getting started video.

If you are an admin, you can issue your own certificates. Take the course TLS (SSL) Certificate Management for Admins and you will be ready to issue your own certs!

 

Frequently Asked Questions

  • How do I generate a Certificate Signing Request (CSR)?
  • What certificate profiles should we use?
    • In general, we use "InCommon SSL Multi Domain General Profile". When devices lack capabilities or servers have specific requirements, we may need to use alternative certificate profiles.

Eligibility

 

Pricing

There is no charge for this service, which is considered a common-good service.

Requirements

 

Options

 

Additional Information

Verification Tool

The following tool can help you manage your web sites SSL certificates.

Qualys SSL Labs

Qualys SSL Labs is a handy tool that quickly updates their web site scanner with the newest vulnerabilities.  Qualys is reportedly the first site to have their scanner updated to identify the HeartBleed vulnerability.  Just make sure you check the box that says “Do not show the results on the boards”  If your site rates an F you don’t want that info made public.

Location

 

Availability/Hours

 

Support

For the most efficient support experience, please submit a ticket using the request form on this page. Alternatively, contact your campus Help Center location via email, by phone, or in person.

 
Request Service

Related Articles (1)

Explains how to create a Certificate Signing Request (CSR) using OpenSSL.