Use these instructions to activate a feature that allows users to keep SSL/TLS certificates out of public CT logs when ordering certificates (new, reissues, and renewals).
In your CertCentral account, in the sidebar menu, click Settings > Preferences.
On the Division Preferences page, scroll down and click +Advanced Settings.
In the Certificate Request section, under CT Logging, check Allow users to change CT logging per request.
Before you save your changes, make sure you understand the consequences of keeping certificates out of the CT logs.
Click Save Settings.
Congratulations! When ordering a certificate (new, reissue, and renewal orders), account users will see an option under Additional Certificate Options that allows them to keep an SSL/TLS certificate out of public CT logs.
Make sure those who can order certificates understand the consequences of keeping certificates out of the CT logs.
In addition, before someone approves an SSL/TLS certificate request, they can see (and make the final decision on) whether the certificate will be logged to CT logs.
DigiCert is the world's leading provider of scalable TLS/SSL, IoT and PKI solutions for identity and encryption. The most innovative companies, including 89% of the Fortune 500 and 97 of the 100 top global banks, choose DigiCert for its expertise in identity and encryption for web servers and Internet of Things devices. DigiCert supports TLS and other digital certificates for PKI deployments at any scale through its certificate lifecycle management solution, CertCentral®. The company is recognized for its enterprise-grade certificate management platform, fast and knowledgeable customer support, and market-leading security solutions. For the latest DigiCert news and updates, visit digicert.com or follow @digicert.
©2020 DigiCert, Inc. All rights reserved. DigiCert, its logo and CertCentral are registered trademarks of DigiCert, Inc. Norton and the Checkmark Logo are trademarks of NortonLifeLock Inc. used under license. Other names may be trademarks of their respective owners.