All Products
Search

This Product

    Certificate Management Service:Purchase SSL certificates

    Document Center

    Certificate Management Service:Purchase SSL certificates

    Last Updated:Jun 20, 2024

    SSL certificates are used to encrypt the data that is transmitted between web servers and clients by using HTTPS. This helps prevent data from being tampered with or leaked. Alibaba Cloud provides various brands and types of certificates to meet the requirements of different users. You can select a certificate based on your budget, domain name type, and website type.

    Procedure

    1. Log on to the Certificate Management Service buy page.

    2. Select specifications for the certificate that you want to purchase based on your business requirements.

      Parameter

      Description

      Certificate Type

      Select the type of the domain names that you want to bind to the certificate. Valid values:

      • Single Domain: You can bind a primary domain name, a subdomain, or an IPv4 public address to a certificate.

        Note

        For example, if you bind a first-level domain name such as aliyundoc.com to a certificate, the certificate is automatically applied to www.aliyundoc.com free of charge. This rule does not apply to Alibaba Cloud certificates.

      • Wildcard Domain: If you have multiple servers that use subdomains at the same level, you need to purchase and install only one wildcard certificate. You do not need to purchase and install a certificate for each subdomain.

        The following list describes the matching rules of a wildcard domain name:

        • Only subdomains at the same level can be matched. Subdomains at different levels cannot be matched. For example, if you bind *.aliyundoc.com to a certificate, subdomains such as demo.aliyundoc.com and learn.aliyundoc.com are matched. Subdomains such as guide.demo.aliyundoc.com and developer.demo.aliyundoc.com are not matched.

        • If the primary domain name of a wildcard domain name is a first-level domain name, the certificate bound to the wildcard domain name is automatically applied to the primary domain name free of charge. This rule does not apply to Alibaba Cloud certificates. For example, if you apply for a certificate bound to *.aliyundoc.com, the certificate is automatically applied to aliyundoc.com free of charge. If you apply for a certificate bound to *.demo.aliyundoc.com, the certificate is not applied to demo.aliyundoc.com or aliyundoc.com domain name free of charge.

        • You can apply for a certificate bound to one wildcard domain name. You cannot apply for a certificate bound to multiple wildcard domain names. If you want to bind multiple wildcard domain names to a certificate, you can combine multiple certificates of the same brand and type to generate a multi-domain wildcard certificate. For more information, see Combine certificates.

      • Multiple Domains: If you select this value, you can bind multiple single domain names to the certificate. You can bind up to five single domain names to a certificate.

      Certificate Specifications

      Select a certificate type.

      For more information about certificate types, see Select an SSL certificate.

      Brand

      Select a certificate brand. The certificate brand is the certificate authority (CA) that issues the certificate to you.

      For more information about certificate brands, see Select an SSL certificate.

      Domain Names

      This parameter is required only if you set the Certificate Type parameter to Multiple Domains. Specify the number of domain names that you want to bind to the certificate.

      Quantity

      Specify the number of certificates that you want to purchase. The default value is 1 and cannot be changed. If you want to purchase multiple certificates, configure the Service Duration parameter. For example, if you set the Service Duration parameter to 2years, two certificates are provided. Each certificate has a validity period of one year.

      Service Duration

      Select the validity period of the certificate service. Valid values:

      • 1 Year: You can use the certificate service for one year. The service provides a certificate whose validity period is one year. The default validity period of a certificate is one year. After a certificate expires, you must place a new order to purchase a new certificate.

      • 2years: You can use the certificate service for two years. The certificate service provides two certificates and a hosting quota of 1. Each certificate has a validity period of one year.

        For more information about the certificate hosting feature, see Overview.

      • 3 Years: You can use the certificate service for three years. The certificate service provides three certificates and a hosting quota of 2. Each certificate has a validity period of one year.

    3. Click Buy Now and complete the payment.

      After you complete the payment, you can click Order Refund Management in the left-side navigation pane of the Certificate Management Service console to view the order instance. You can use the tag feature to add a tag to an order instance. To add a tag, find the order instance and click the 标签图标 icon.

      If the certificate quota in the order instance is not consumed within a specific period after the payment is complete, you can request a refund for the order. For more information about refund conditions and methods, contact your account manager.

    What to do next

    After you purchase a certificate, you can submit a certificate application to the CA. After the application is approved, the CA issues the certificate to you. For more information about how to apply for a certificate, see Submit a certificate application.

    References