SSL certificates Secure Computing

Secure Sockets Layer (SSL), is a cryptographic protocols that provide communication security over the Internet.

Benefits & Features

It uses asymmetric cryptography for authentication of key exchange, symmetric encryption for confidentiality and message authentication codes for message integrity. Several versions of the protocols are in widespread use in applications such as web browsing, electronic mail, Internet faxing, instant messaging and voice-over-IP (VoIP).

UNL uses SSL certs from InCommon

Cost Savings - Unlimited certificates for a fixed annual fee takes the guess work out of budgeting.

Comprehensive - Includes all of your domains — .edu and non-edu alike, such as athletics and professional societies.

Ease of Use - Through Comodo's certificate manager interface, certificates are easy to order and install. Issue certificates for three years or one year — it's your choice.

Contracted with Comodo - A leading commercial provider of certificates.

Private Label Certificate Authorities - Intermediate CAs with campus-specific profiles and practice statements are available to members who desire this functionality for an additional cost.

Getting Started

Please see InCommon's getting started video.

When generating your CSR, please use the following settings:

 

###################################
[req]
default_bits = 4096
default_md   = sha256
string_mask  = utf8only
prompt       = no
encrypt_key  = no
distinguished_name = req_distinguished_name

[ req_distinguished_name ]
C = US
ST = Nebraska
L = Lincoln/Omaha/Kearney
O = University of Nebraska-Lincoln/Omaha/Kearney
CN = example.nebraska.edu
emailAddress = email_for_notifications@nebraska.edu

[req_ext]
subjectAltName = @req_san

[req_san]
DNS.1 = example1.nebraska.edu
DNS.2 = example2.nebraska.edu
###################################

Pricing

There is no charge for this service, which is considered a common-good service.

Additional Information

Verification Tool

The following tool can help you manage your web sites SSL certificates.

Qualys SSL Labs

Qualys SSL Labs is a handy tool that quickly updates their web site scanner with the newest vulnerabilities.  Qualys is reportedly the first site to have their scanner updated to identify the HeartBleed vulnerability.  Just make sure you check the box that says “Do not show the results on the boards”  If your site rates an F you don’t want that info made public.

Support

FOR PROBLEMS OR ISSUES: Contact the support@nebraska.edu