- Print
- PDF
Issue certificate
- Print
- PDF
The latest service changes have not yet been reflected in this content. We will update the content as soon as possible. Please refer to the Korean version for information on the latest updates.
Available in Classic and VPC
You can obtain and use SSL/TLS certificates from NAVER Cloud Trust Services, a trusted certificate authority.
Issued certificates work properly with compatible operating systems and software. Before use, be sure to check the compatibility of the issued certificate.
Compatibility of issued certificates
Check the operating system and software version in which the certificate issued by NAVER Cloud Trust Services works normally.
Operating systems and software | Recommended specifications |
---|---|
Microsoft Windows, Windows Server | CTL (Certificate Trust List) updated after March 26, 2019 |
Mozilla NSS | NSS version 3.60 or later |
Google Android | Android version 12 or later |
Google Chrome | Chrome version 102 or later |
Apple macOS | macOS version 13 (Ventura) or later |
Apple iOS | iOS version 16 or later |
Apple iPadOS | iPadOS version 16 or later |
Apple watchOS | watchOS version 9 or later |
Apple tvOS | tvOS version 16 or later |
JAVA | Not supported - Go to root certificate installation |
- You can check in advance whether the operating system and software you are using are working normally by accessing the test website to which the issued certificate has been applied.
- If the client environment using SSL/TLS communication is an incompatible version or software, NAVER Cloud Trust Services root certificate must be installed in the client environment to enable normal communication. Please see the Certificate Compatibility and Root Certificate installation section for information on how to install the root certificate.
Certificate features
Item | Contents |
---|---|
Key algorithm | RSA 2048 bit |
Validity period | 395 days |
Available domain names | FQDN (e.g., www.example.com) Apex domain (e.g., example.com) Wildcard domain (e.g., *.example.com) |
Number of domains per certificate | Up to 10 |
Number of certificates to be issued | Up to 25 |
Domain validation methods | Email validation, DNS validation |
Services to be integrated | Load Balancer, Global Edge |
The issued certificate does not support VPC WAF integration.
Apply for a certificate
To apply for a certificate, follow these steps:
- On the NAVER Cloud Platform console, click Services > Security > Certificate Manager in order.
- Click the Certificate List menu.
- Click the [Issue certificate] button.
- When the Issue certificate page appears, proceed with the following steps in order.
1. Enter domain
Enter the certificate name and domain name.
- For Certificate name, enter a name that is different from other certificate names.
- You can enter a minimum of 1 up to a maximum of 10 domain names.
- Available domain name types
- FQDN (e.g., www.example.com)
- Apex domain (e.g., example.com)
- Wildcard domain (e.g., *.example.com)
- Available domain name types
2. Validation methods
Select how to validate the ownership of the domain you've applied for. Once you select a validation method at this stage, you cannot change it later.
- Email validation: a validation method that involves entering a validation value in the Certificate Manager console, which is sent to the common system administration address (a reserved email address).
- DNS validation: a validation method checking if you have DNS editing permissions
For more information on domain ownership validation methods, see the following section:
3. Review and request
Review the certificate information you requested and the validation method.
- If you selected email validation, a validation request email will be sent to the common system administration address. Then, you can view the email address to which the validation request was sent and the status of the validation in the certificate details in the Certificate List.
- If you selected DNS validation, a validation value is generated that you need to enter in the Record Name and Record Value of the DNS CNAME after the application is complete. Then, you can view the generated validation value and validation status in the certificate details in the Certificate List.
4. Application completion
After the application is complete, the certificate status appears as In Progress in the Certificate List.
Conditions for a certificate issuance
If validation is performed and the validation status of all domains applied is successful, the certificate will be issued. If issued successfully, the certificate status appears as Normal, and information such as issuance date, authentication start date, and authentication end date, etc. in the certificate details are updated.
Validation status types include In Progress, Successful, Timeout, and Failed.
Validation status
Validation status can be viewed in Certificate List > Certificate Details.
Validation Status | Description |
---|---|
In Progress | Validation values have been generated by the domain ownership validation method selected when applying for a certificate and are waiting for the validation results as normal. |
Successful | The domain ownership validation that was in progress is now successful. |
Timeout | The In Progress status has exceeded 72 hours. The domain ownership validation can no longer proceed after the timeout. Proceed to apply for a new certificate. |
Failed | The validation value generation failed with the domain ownership validation method selected when applying for a certificate. The status may fail if email validation fails to send email or DNS validation fails to generate a normal validation value. |
Validation method
- If the validation method is email validation, at least 1 email address for each domain should complete a validation request and then the validation for that domain will be successful.
- If the validation method is DNS validation, 1 DNS verification value is generated for each domain.
- After the certificate application is complete, Certificate Manager checks for successful validation repeatedly for 72 hours. If the validation for all domains you applied for is successful, the validation status appears as Successful and the certificate is issued within minutes.
- If the verification is not successful within 72 hours, the certificate status will be Timeout and the certificate can no longer be issued. If the validation status is Timeout, apply for a new certificate.