Certificate Management Service allows you to combine certificate instances. This reduces the number of times that you apply for certificates. You can combine multiple certificate instances of the same brand and type into one certificate instance. Then, you can use the combined certificate instance to apply for a certificate. You can apply for a multi-domain wildcard certificate or a hybrid certificate. This simplifies certificate application and management.

Notice After certificate instances are combined, you can no longer claim refunds for the certificate instances.

Prerequisites

Multiple certificate instances of the same brand and type are purchased, and the certificate instances meet the following conditions:
  • The certificate instances are of the organization validated (OV) or extended validation (EV) type.
  • The certificate instances are in the Pending Application or Validation Failed state, and each certificate instance has a validity period of one year.
    Notice If you want a certificate instance that you purchase to appear in the certificate list, you must click Apply for Certificate above the certificate list in the Certificate Management Service console. Then, the certificate instance appears in the certificate list and is in the Pending Application state, which indicates that the certificate instance is not used to submit a certificate application to the certificate authority (CA) for review. When you apply for a certificate, you must set Validity Period (Years) to 1. For more information, see Submit a certificate application.

Procedure

  1. Log on to the SSL Certificates Service console.
  2. On the Manage Certificates tab of the SSL Certificates page, select Pending Application from the status drop-down list above the certificate list.
  3. Find the certificate instance that you want to combine and click Combine Certificates in the Actions column.
  4. In the Combine Certificates dialog box, select the certificate instances that you want to combine with the current certificate instance, select Confirm that the combined certificates are not eligible for refunds, and then click Combine Certificates.
    You can combine multiple certificate instances with the current certificate instance. The number of domain names that can be bound to the combined certificate instance is equal to the sum of the number of domain names that can be bound to each certificate instance before the certificate instances are combined. Combine Certificates dialog box
  5. In the Combination Success message, click OK. Combination Success message
  6. Find the combined certificate instance and click Apply for Certificate in the Actions column.
    You can search for the combined certificate instance by using the name of the combined certificate instance. The name of the combined certificate instance starts with cas-merge.
  7. In the Apply for Certificate panel, configure the parameters and click Submit. The number of domain names that you can specify for Domains to Bind is indicated by the You can enter *** more domain(s) message.
    For more information about how to apply for a certificate, see Required information for certificate application. Domains to Bind
    After the certificate application is submitted, you must cooperate with the CA staff to complete the verification process. After the verification is successful, the CA issues the certificate to you. For more information about the required operations after the certificate is issued, see What to do next.

    If your certificate application is rejected, search for and join the DingTalk group numbered 32435999.

Review duration

After you submit a certificate application for an OV certificate or an EV certificate, the CA completes review and issuance within 3 to 7 business days.

Notice If the OV or EV certificate is not issued more than 1 business day after you submit the certificate application, check whether you missed a phone call from the CA or an email that contains the instructions for verifying the ownership of your domain name. If you do not receive the phone call or email, you can search for and join the DingTalk group numbered 32435999. If you receive the email, we recommend that you perform the required operations that are indicated in the email to verify the ownership of your domain name at the earliest opportunity. This way, the period of time that is required to review your certificate is reduced.

What to do next

Install the issued certificate on web servers. The certificate is bound with multiple domain names and must be installed on different web servers that host the domain names. For more information about how to install a certificate, see Installation overview.