All Products
Search

This Product

    Certificate Management Service:Combine certificates

    Document Center

    Certificate Management Service:Combine certificates

    Last Updated:Aug 20, 2025

    Certificate Management Service lets you combine multiple certificates of the same brand and type into a single certificate for issuance. Supported domain name types include single domain names, wildcard domain names, and IP addresses. This simplifies the application and management process for multiple certificates, such as multi-domain wildcard certificates and hybrid certificates.

    Background information

    • A wildcard certificate is also known as a wildcard domain name certificate. A certificate is considered a wildcard certificate if it is bound to a wildcard domain name, such as *.aliyundoc.com. A multi-domain wildcard certificate is a certificate that is bound to multiple wildcard domain names.

    • A hybrid certificate is a certificate that is bound to a combination of single domain names, wildcard domain names, or IP addresses. For example, a certificate bound to both *.aliyundoc.com and demo.example.com is a hybrid certificate.

    Prerequisites

    The certificates that you want to combine must meet the following conditions:

    • The certificates are of the same brand and type, and are in the Pending Application state.

    • For GlobalSign-branded certificates, you can combine certificates only if one of the following conditions is met:

      • For DV certificates, you can combine them only if they share the same primary domain name.

        Note

        For the primary domain name example.com, you can combine certificates for a.example.com and a.b.example.com. You cannot combine certificates for a.example.cn or a.example01.com.

      • For Extended Validation (EV) certificates, the primary domain names are not required to be the same. However, you cannot combine wildcard certificates or IP address certificates.

        Note

        You can combine certificates for example.com, a.example.com, a.example.cn, and a.example01.com. You cannot combine certificates for wildcard domain names such as *.example.cn, *.example.com, or 10.**.***.5.

      • For Organization Validated (OV) certificates, the primary domain names are not required to be the same. You can combine wildcard certificates and IP address certificates.

        Note

        You can combine certificates for domain names such as example.com, a.example.com, a.example.cn, a.example01.com, *.example.cn, *.example.com, and 10.**.***.5.

    • The certificates are not hosted. If a certificate that you want to combine is hosted, you must cancel certificate hosting as shown in the following figure. For more information, see Cancel certificate hosting.

      image.png

    Procedure

    Warning

    After you combine certificates, you cannot request a refund. If the certificates were purchased as part of a resource plan, you cannot cancel the application. Proceed with caution.

    1. Log on to the Certificate Management Service console.

    2. On the Official Certificate tab, click the certificate status drop-down list above the certificate list, and then select Pending Application.

    3. Find the certificate that you want to combine and click Combine Certificates in the Actions column.

    4. In the Combine Certificates dialog box, select the certificates that you want to combine with the current certificate, select the confirmation checkbox, and then click Combine Certificates.

      image.png

    5. In the Combination Successful dialog box, click OK.合并成功

    6. Find the combined certificate and click Apply For Certificate in the Actions column.

      You can search for a combined certificate by its name. The name of a combined certificate starts with cas-merge.

    7. In the Apply For Certificate panel, set the Domains To Bind parameter and enter the other required application information. Then, click Submit For Review.

      • The number of domain names that can be bound to the combined certificate is the sum of the number of domain names that can be bound to each individual certificate.

      • For more information about other configuration items for a certificate application, see Information to submit for a certificate application.

      image.png

      After you submit the application for review, work with the Certificate Authority (CA) to complete the information review and wait for the CA to issue your certificate. For more information about the operations required for certificate issuance, see What to do after you submit a certificate application.

      After the CA approves your application, the CA issues the certificate. If the application review fails, you can contact your business manager for assistance.

    Review duration

    If your information is correct and you promptly respond to verification requests from the CA, the CA completes the review and issues the certificate within 3 to 7 business days.

    Important

    After you submit an application for an OV or EV certificate, the CA sends a preliminary review email or calls you for confirmation within one business day. The specific time depends on the local time of the CA and may be postponed for public holidays. You must promptly answer the call or confirm the email from the CA. If you do not receive a call, email, or other notifications, contact your business manager for assistance.

    What to do next

    Install the issued certificate on your web server. Because the combined certificate is bound to multiple domain names, you must install the certificate on the web server for each domain name. For more information about how to install a certificate, see Deploy an SSL certificate.