Sorry - either this article does not exist or you haven't been given permission to view it.
RSS Feed
Knowledgebase

CODE SIGNING CERTIFICATES If you have come across malware signed with a Comodo issued Code Signing certificate please send as much detail as possible to: signedmalwarealert@comodo.com Helpful details include: * link to the signed malware * screenshots of the certificate details showing the signer organization or certificate serial number or other details which will help us identify the certificate * a copy of the actual certificate if possible SSL/TLS CERTIFICATES If you need to...
1. DOMAIN VALIDATED CERTIFICATES (DV) * A - Email Challenge-Response DCV * B - HTTP Based DCV * C - DNS CNAME Based DCV Following completion of one of the elements above the certificate will be signed and released Additional details can be found using the following URL: Methods of Domain Control Verification [https://support.comodo.com/index.php?_m=knowledgebase&_a=viewarticle&kbarticleid=1367&nav=0,96,1,33] Note that ALL SSL Certificates MUST undergo the above DCV process in addition ...
Our technical support staff are available 24 x 7 (barring any unforseen circumstances) for online chat. PLEASE NOTE: WE DO NOT PROVIDE ONLINE CHAT FOR ANY OF THE FREE SECURITY SOLUTIONS PRODUCTS. ANYONE REQUESTING SUPPORT FOR FREE PRODUCTS SHOULD SUBMIT A TICKET FROM HTTP://SUPPORT.COMODO.COM [HTTP://SUPPORT.COMODO.COM] AND SELECT "SUBMIT A TICKET" LINK. COMODO CERTIFICATE AUTHORITY COMODO SECURITY SOLUTIONS We provide online chat for technical issues on our range of SSL products. To ch...
SHA-2 SHA-1 (Legacy) Product Certification Path (Hierarchy) Certification Path (Hierarchy) EV [ inc. EV SGC & Multi-Domain ] * UserTrust / AddTrust External Root * COMODO RSA Certification Authority * COMODO RSA Extended Validation Secure Server CA * END-ENTITY/DOMAIN CERTIFICATE Download Files [https://support.comodo.com/index.php?/Default/Knowledgebase/Article/View/977/108/extended-validation-sha-2] * UserTrust / AddTrust External Root * COMODO Certifica...
All Comodo certificates MUST pass through DCV (Domain Control Validation) before they are issued. DCV is a mechanism used to prove ownership or control of a registered domain name. There are 3 mechanisms for DCV: * eMail-based DCV (Traditional) You will be sent an email to an administrative contact for your domain. The email will contain a unique validation code and link. Clicking the link and entering the code will prove domain control. Valid email addresses are: Any email address whi...
EXECUTIVE SUMMARY The use of the signing algorithm has been deprecated in favor of the newer and more secure SHA-2 algorithm. Google's announcement on Sept 5th 2014 accelerated the timeline for browser checking of SHA-1 in web server SSL certificates so that Chrome will display security notices where SHA-1 is encountered. This will incur negative user experience effects for website visitors where the SSL certificate is using SHA-1. As of 8 September 2015, Comodo will issue SHA-2 certificat...
Secure certificates of any type currently CANNOT be issued to individuals or business entities in the following countries websites or the following country-code-top-level domains (TLDs): Restricted Countries Listing: The following countries are restricted by US Export restriction laws, therefore Comodo.com cannot issue ssl certificates for registrants in the following countries AF Afghanistan CI Cote d'Ivoire CU Cuba ER Eritrea GN Guinea IQ Iraq IR Iran, Islamic Republic of K...
In July 2012, the CA/Browser Forum, the industry standards board for Certificate Authorities and the browsers that use Certificates, made a decision to deprecate the usage of reserved IP addresses and internal names for certificates, effective November 1st 2015. All such certificates still outstanding must be revoked by October 31, 2016. _COMODO WILL NOT ISSUE A CERTIFICATE WITH AN EXPIRY DATE LATER THAN 1 NOVEMBER 2015 WITH A SUBJECTALTERNATIVENAME (SAN) EXTENSION OR SUBJECT COMMONNAME (CN) F...
SHA-2 COMPATIBILITY Please see below for minimum versions required for SHA-2 as well as some listed exceptions. SOFTWARE AND HARDWARE THAT SUPPORT SHA-2 BROWSER & SERVER SUPPORT BROWSER MINIMUM BROWSER VERSION Chrome 26+ Firefox 1.5+ Internet Explorer 6+ (With XP SP3+) Konqueror 3.5.6+ Mozilla 1.4+ Netscape 7.1+ Opera 9.0+ Safari 3+ (Ships with OS X 10.5) Server Minimum Server Version 4D Server 14.01+ Amazon Web...
SSL CERTIFICATE COUNTRY CODES FIND YOUR COUNTRY CODE FROM THE LIST PROVIDED BELOW COUNTRY CODES ARE REQUIRED WHEN CREATING A CERTIFICATE SIGNING REQUEST. THE SSL CERTIFICATE COUNTRY CODES THAT YOU NEED TO ENTER WHEN CREATING YOUR CSR ARE AS FOLLOWS: * US United States of America * CA Canada * AX Åland Islands * AD Andorra * AE United Arab Emirates * AF Afghanistan * AG Antigua and Barbuda * AI Anguilla * AL Albania * AM Armenia * AN Netherlands Antilles * AO Angola ...
SERVER NAME INDICATION SNI stands for Server Name Indication and is an extension of the TLS protocol. It indicates which hostname is being contacted by the browser at the beginning of the 'handshake'-process. This allows a server to present multiple certificates on the same IP address and TCP port number and hence allows multiple secure websites to be served off the same IP address without requiring all those sites to use the same certificate. When making a TLS connection the client requests...
CSR GENERATION CENTOS WEBPANEL 1.Login to CWP panel. 2. Go to security tab and SSL Generation. Country Name (2 letter code) [AU]: GB State or Province Name (full name) [Some-State]: YORKS Locality Name (eg, city) []: YORK Organization Name (eg, company) [Internet Widgits Pty Ltd]: MYCOMPANY LTD Organizational Unit Name (eg, section) []: IT Common Name (eg, YOUR name) []: MYDOMAIN.COM Email Address []: Key Size: 2048 3.Then Click generate and it will display the CSR and private key. Do bac...
If you have multiple servers that need to use the same SSL certificate, such as in a load-balancer environment or using a wildcard [https://ssl.comodo.com/wildcard-ssl-certificates.php] or UC SSL certificates [https://ssl.comodo.com/unified-communications-uc-ssl-certificates.php], you can convert the certificates and private key to a .PFX FILE and THEN IMPORT THE CERTIFICATE ON WINDOWS SERVER SO IT CAN BE USED IN IIS OR EXCHANGE. This may also be necessary when you switch hosting companies. We w...
CCM 5.4 –FEATURE SPOTLIGHT CODE SIGNING ON DEMAND PRODUCT RELEASE DATE -MARCH 31ST, 2016
Comodo Certificate Manager Version 5.4 - Windows Auto Enrollment Setup Guide
SSL INSTALLATION HEROKU All we need to have is the certificate and private key for SSL installation. SSL configuration on Heroku depends slightly on where you are deploying your application. CREATE THE ADDON It is required only if you app in common Runtime. Else you can skip this step. $ heroku addons:create ssl:endpoint ADDING CERTIFICATE, INTERMEDIATE AND PRIVATE KEY We need to combine the certificate and the bundle to a single .crt file. _CAT DOMAIN_COM.CRT DOMAIN_COM.CA-BUNDLE...
HOW DO I MAKE MY OWN BUNDLE FILE FROM CRT FILES? ANSWER: You may do this using you favorite text editor or by using the command line. Example: # Root CA Certificate - AddTrustExternalCARoot.crt # Intermediate CA Certificate 1 - ComodoRSAAddTrustCA.crt OR ComodoECCAddTrustCA.crt # Intermediate CA Certificate 2 - ComodoRSADomain/Organization/ExtendedvalidationSecureServerCA.crt OR ComodoRSAECCDomain/Organization/ExtendedvalidationSecureServerCA.crt # Intermediate CA Certificate 3 - ComodoSHA25...
Most popular articles 
 
Newest articles