Related pages
This is a specialist service available to administrators of IT systems and servers.
Administrators can request SSL certificates for any service hosted under york.ac.uk, or other domains legally owned by the University.
Eligibility
Departmental Computing Officers (DCOs) and IT Services staff can request certificates.
The service is provided by JISC, and allows us to obtain the following types of certificates on behalf of the University:
Certificate types (JISC)
Unless a specific certificate type is requested, we will issue an Organisation Validated certificate (OV). Extended Validation (EV) certificates are also available, if required.
If you're requesting an EV certificate, please let us know why it is needed.
OV and EV certificates are provided to you free of charge. IT Services purchase a bundle of credits each year to meet the University's needs based on the current number of certificates and expiry dates.
You can have up to 50 SANs (alternative names) as part of the standard service.
The following specialist certificates can be purchased at £100 each:
Wildcard certificates (OV type)
There are two available options to generate a CSR:
1. Use the CSR Wizard:
The CSR wizard is available through the Certificate Request System, by clicking “Generate a new CSR” option.
2. To manually generate a CSR:
This step can be carried out by the server or system administrator, or by the Departmental Computing Officer (DCO).
Gather the following information regarding the server administrator:
Create a Certificate Signing Request (CSR).
For instructions on how to manually generate a CSR, please see the Comodo support site.
The process usually requires you to provide the following information to the CSR generation software:
Important notes:
Provide the certificate signing request and the administrator information to the DCO.
This step must be carried out by the DCO.
This step can be carried out by the server or system administrator, or by the Departmental Computing Officer (DCO).
You can request that a certificate be revoked (for example because the private key has been compromised).
The administrator should contact the Library & IT Help Desk, who will take steps to validate the identity of the subscriber before revoking or suspending the certificate.
It is the responsibility of the server administrator to renew certificates before they expire. Expiry notifications will be sent to the email address that was included with the certificate request.
Library & IT Help Desk
If you're having problems with any aspect of SSL certificates, get in touch with the IT Support.
Service status | Live and supported service. |
---|---|
Hours of service | 24/7 |
Service support | For help and support with this service, contact the IT Support. |
Hours of support | Help from the Library & IT Help Desk is available 9am to 5pm, Monday to Friday. |
Target availability |
General IT Services targets:
|
Our performance |
Our service standards have been produced in consultation with our customers, and monitor the quality, timeliness and access to facilities and services:
|
Complaints procedure |
If you wish to give us general feedback on this service, please see our Feedback page for ways to get in touch. If you wish to make a complaint, please see our complaints procedure. |
It is your responsibility to: