As from July 1st 2015 the supplier of certificates changes through BELNET. Certificates can be requested with the new provider.
The existing certificates will obviously remain active for the remaining lifetime.
The conditions to which has to be complied to get a certificate signed have not been changed.
| countryName | BE |
| stateOrProvinceName | O-VL |
| localityName | Gent |
| organizationName | Universiteit Gent |
| organizationalUnitName | the name of the facultu department, department or direction |
| commonName | the machine name (in full, e.g. allserv.UGent.be) |
| emailAddress | only for a mail server the emailadres of the responsible for the service (adres@UGent.be) |
in particular:
Create a Certificate Signing Request (CSR) for your service. How this has to be done can be found in the documentation of your webserver.
Warning! The minimum required private key length (bits): 2048
There are 3 different types of certificates. Please choose the correct one in your request:
SSL Plus: classic certificate with 1 servername. Exception: If you make a request for www.example.UGent.be,
you will also receive example.UGent.be as second name. Make sure both names are registered.
Multi-Domain (SAN) SSL: classic certificate for multiple names, so with extra SANs (Subject Alternative Names) which you can provide.
EV Multi-Domain: certificate with extra validation and therefore a green addressbar in the browser.
For websites which are used externally and with which an extra validation can be of added value.
Requests can be made through:
https://www.digicert.com/secure/requests/products?guest_key=bl9g5pmq0z9n52nt