Sectigo Certificates via Incommon

Notes about Certificate Requests

  • Sectigo requests must have a key size greater than 2,048 bits. We suggest 4,096. Read about  How to change key size while renewing in IIS5 and IIS6.
  • Unless otherwise explicitly requested in the Notes field on the UB request form, we will purchase Sectigo certificates. The Organization field is not used to determine certificate signer.
  • The old Comodo certificate signing process for a single domain always produced a certificate with a Subject Alternate Name (SAN). Both www.domain.buffalo.edu and domain.buffalo.edu were included in each single domain certificate. If you requested www.domain.buffalo.edu you would get a certificate for both www.domain.buffalo.edu and domain.buffalo.edu. Likewise if you requested domain.buffalo.edu you would get a certificate for both domain.buffalo.edu and www.domain.buffalo.edu.
     
    This is no longer the case.  If you need a certificate with both names you must create a CSR with a SAN field for the second name.

See also

Still need help?

Contact the UBIT Help Center.