Skip to main content

Request private TLS/SSL certificate

Use these steps to request a private TLS/SSL certificate in CertCentral. Private TLS/SSL certificates are not publicly trusted and are used for internal systems, development environments, and private networks.

Notice

Private SSL OV is not available by default in any CertCentral account. To enable Private SSL for your account, contact your DigiCert account manager or DigiCert Support.

Before you begin

  • A CSR must be generated and ready to paste. See Generate a certificate signing request (CSR).

  • Available validity periods and signature hash options depend on your account's Private SSL product settings. To update these, go to Settings > Product settings > Private SSL. Changes take effect on new requests.

Start a certificate request

For Enterprise, Partner, and Legacy accounts:

  1. In the CertCentral main menu, go to Certificates > Request certificate.

  2. Select Private TLS/SSL certificate.

    Available product is Private SSL OV.

Enter certificate details

  1. Enter the common name (primary domain).

  2. Add any additional subject alternative names (SANs) if required.

  3. Select the certificate validity period.

  4. Paste the certificate signing request (CSR).

  5. Select the signature hash algorithm if applicable.

Submit the request

  1. Review the order details.

  2. Select the payment method.

  3. Read and accept the Certificate Services Agreement.

  4. Select Submit.

Private TLS/SSL certificates do not require domain validation or organization validation. DigiCert issues the certificate after processing the request.

What's next

Manage pending orders to monitor the status of your submitted request and complete any outstanding validation steps

In this section: