Logo dirsisti
Logo Unitn
 
  • Italiano
Logo MyUnitn

Digital certificates for servers

 

The SSL certificates, at the basis of the HTTPS protocol, certify the ownership of a website and allow the encrypted communication between the browser and the server hosting its website. They must be used when the website exchanges confidential information when the client (like the password or the credit card number).

For cyber security reasons, for each website of the Unitn domain requiring the use of access credentials, it is advisable and important to implement a secure protocol through the SSL certificate, to prevent possible sniffing or non-authorised access.

The University created a Registration Authority (RA) offering a free service of certificate request.

To require an SSL certificate for a server you need to send an email message to ra [at] unitn.it (cc the Department’s Director or Manager), containing the following parameters.

The Registration Authority (RA) submits all requests to the Certification Authority (CA) of the GARR Consortium, which in turn requires the certificate to Comdo (commercial authority) member of the TERENA Certificate Service - TCS for the issuing of SSL certificates issued by the Commercial Certification (Comodo CA) which is widely spread in the web browsers.

Get Service 

Mailto: ra [at] unitn.it

The request of the SSL certificate is submitted to the Unitn Registration Authority, upon approval by the coordinator of the requiring unit/deparment/center.

FAQ 

Are there any limits regarding the certificate naming?

The SSL certificates may be required only for some host names within the Unitn domain or subdomains (e.g. alfa.soc.unitn.it).

Is it possible to require an SSL certificate with more than one name?

Yes, all names specified on the request form will be inserted in a SAN certificate (Subject Alternative Name). On the contrary, you may not require certificates for a complete domain (e.g. *soc.unitn.it) through the use of certificates with DN wildcard.

Do SSL certificates expire?

Yes. When you require the certificate you may require its validity up to maximum 3 years. When the expiry date is getting close, the person who has required the certificate - who will be notified about it via email - may require its renewal.

How do I install the certificate on my server?

The certificate will be sent as an attachment to the email address of the person who has required it, who shall contact the Unitn Registration Authority by phone to obtain the relevant password.
The certificate will be sent as an attachment to the email address of the person who has required it, who shall contact the Unitn Registration Authority by phone to obtain the relevant password.
Then it will be possible to install the certificate on the server, following the instructions published on
https://support.comodo.com/index.php?_m=knowledgebase&_a=view&parentcate...