FAQ

This topic provides answers to some frequently asked questions about SSL Certificates Service.

FAQ about certificate concepts

• What are the advantages of SSL certificates?
• What is a public key and a private key?
• How does SSL Certificates Service protect private keys?
• What is the difference between HTTPS and HTTP?
• What formats are used for mainstream digital certificates?
• What kind of domain names are supported by wildcard domain certificates?
• What websites must have HTTPS encryption enabled?
• Keys without password protection

FAQ about certificate billing and service activation

• What should I do when my SSL certificate expires?
• How do I renew my certificate?
• When I purchase a certificate, an error message that indicates an activation failure is returned. What do I do?

FAQ about certificate application and validation

• Notes on completing information for fee-based certificate requests
• Guidelines for OSS users applying for SSL certificates
• How do I select: certificate type-certificate brand-number of protected domain names?
• How do I enter domains to be added to a certificate?
• How can I apply for multi-domain wildcard certificates or hybrid certificates?
• What do I need to do after I submit a certificate verification request?
• Can an already-in-use SSL certificate be used if the IP of a server is changed?
• Why does my certificate order status remain unchanged even after receiving a notification from the CA?
• What can I do if my order is accidentally closed or some information is incorrect?
• After I cancel my certificate application, an error message is returned, which indicates that an error occurred during page loading. What do I do?
• What are the considerations for domain names if I want to apply for a certificate?
• My domain name fails the security audit, and an error message is returned, which indicates a failure to apply for a free DV certificate. What do I do?
• How do I create a CSR file?
• When I upload my CSR file, an error message is returned, which indicates that a validation failure occurred due to the absence of the base domain name. What do I do?
• The configurations to verify domain name ownership failed to be pushed to Alibaba Cloud DNS. What do I do?
• What are the possible reasons for certificate validation failures? What are the solutions?

FAQ about certificate configuration and installation

• How do I select and configure a certificate to support Apple ATS?
• The IIS service is inaccessible from Google Chrome after an SSL certificate is installed. What do I do?
• Website access from Google Chrome failed when website domain names are used for access. What do I do?
• I have installed a certificate on my website, but an old certificate still appears. Why?
• I have installed a certificate on an IIS server, but a 404 error is returned when I access the server. Why?
• I cannot install Symantec certificates that support mutual authentication on IIS servers. What do I do?
• How do I install a certificate that has a certificate chain on an Apache server?
• How do I install SSL certificates on different types of servers?
• How do I check whether my certificate takes effect on browsers?
• My browser prompts that the certificate is not trustworthy. What do I do?
• Multiple websites are associated with the same IP address and port of a server. However, when I access the websites, the system prompts that the certificate does not match. What do I do?
• The ERR_CERTIFICATE_TRANSPARENCY_REQUIRED error is returned by Google Chrome. What do I do?
• The IIS service is inaccessible from Google Chrome after an SSL certificate is installed. What do I do?

FAQ about certificate deployment to Alibaba Cloud services

• FAQ about deploying certificates to cloud products
• How can I deploy my certificate to other Alibaba Cloud products?

FAQ about certificate management

• What are the impacts if I do not renew my certificate in time after it expires?
• How can I download a domain name certificate?