Custom SSL Certificates

The following are the key features of custom domain certificates:

  • Certificate must be valid X.509 Certificate.

  • You can copy and paste the content from the certificate .pem file.

  • You can add multiple custom certificates.

  • A valid custom certificate has an Active status on upload to the EDJX Platform. Once it expires, the status changes to Expired and you need to upload the certificate again.

  • Chains contain all the intermediate certificates up to the root certificate.

  • Private keys contain the secret key of the certificate, which is used by the Web server when it makes an SSL/TLS connection.

A custom certificate is validated based on the following parameters:

  • Common Name - The certificate should be of the same domain or a subdomain of the domain for which you are uploading the certificate.

  • Expiry - The certificate should not be expired.

  • Issuer - The certificate should not be self-signed.

SSL Certificate Chain Order - The EDJX Platform validates the chain of trust starting from the end-user certificate, intermediate certificates, up to the root certificates. Root CAs are a trusted source of certificates.

While validating the chain of trust, the EDJX Platform validates the intermediate certificates as follows:

  • Certificate should not be expired.

  • Root certificate should be one of the certificates mentioned in Included Certificates.

Add a Custom Certificate

To add a custom certificate:

  1. Switch to the organization associated with the domain.

  2. Click Main Menu  Domains.
    The Domains page displays.

  3. Click the domain row to add a certificate or hover over the row, and then click the Edit icon.

  4. Click the SSL/TLS tab.

  5. Click Add Custom Certificate from the Add Certificate drop-down.
    The Create a Certificate dialog displays.

    Add Certificate

  6. Enter your certificate information as text or click Select File to display the selection dialog window.

  7. Click Create.
    The SSL/TLS tab displays the added certificate.

Edit a Custom Certificate

You can edit only the name of a custom certificate.

To edit a custom certificate:

  1. Switch to the organization associated with the domain.

  2. Click Main Menu  Domains.
    The Domains page displays.

  3. Click the row of the domain that contains the certificate or hover over the row, and then click the Edit icon.

  4. Click the SSL/TLS tab.

  5. Click the row of the certificate you want to edit or hover over the row, and then click the Edit icon.
    The Certificate fly-in window displays.

    Add Certificate

  6. Update as needed, and then click Save.

Delete a Custom Certificate

To delete a custom certificate:

  1. Switch to the organization associated with the domain.

  2. Click Main Menu  Domains.
    The Domains page displays.

  3. Click the row of the domain that contains the certificate or hover over the row, and then click the Edit icon.

  4. Click the SSL/TLS tab.
    The SSL/TLS table displays.

  5. Click the row of the certificate you want to delete or hover over the row, and then click Delete.

  6. On the Delete Certificate confirmation dialog, click Delete.