Login
      Contents x
      Issue certificate
        • Print
        • PDF
        Contents

        Issue certificate

          • Print
          • PDF
          Article Summary

          The latest service changes have not yet been reflected in this content. We will update the content as soon as possible. Please refer to the Korean version for information on the latest updates.

          Available in Classic and VPC

          You can obtain and use SSL/TLS certificates from NAVER Cloud Trust Services, a trusted certificate authority.

          Caution

          Issued certificates work properly with compatible operating systems and software. Before use, be sure to check the compatibility of the issued certificate.

          Compatibility of issued certificates

          Check the operating system and software version in which the certificate issued by NAVER Cloud Trust Services works normally.

          Operating systems and softwareRecommended specifications
          Microsoft Windows, Windows ServerCTL (Certificate Trust List) updated after March 26, 2019
          Mozilla NSSNSS version 3.60 or later
          Google AndroidAndroid version 12 or later
          Google ChromeChrome version 102 or later
          Apple macOSmacOS version 13 (Ventura) or later
          Apple iOSiOS version 16 or later
          Apple iPadOSiPadOS version 16 or later
          Apple watchOSwatchOS version 9 or later
          Apple tvOStvOS version 16 or later
          JAVANot supported - Go to root certificate installation
          • You can check in advance whether the operating system and software you are using are working normally by accessing the test website to which the issued certificate has been applied.
          • If the client environment using SSL/TLS communication is an incompatible version or software, NAVER Cloud Trust Services root certificate must be installed in the client environment to enable normal communication. Please see the Certificate Compatibility and Root Certificate installation section for information on how to install the root certificate.

          Certificate features

          ItemContents
          Key algorithmRSA 2048 bit
          Validity period395 days
          Available domain namesFQDN (e.g., www.example.com)
          Apex domain (e.g., example.com)
          Wildcard domain (e.g., *.example.com)
          Number of domains per certificateUp to 10
          Number of certificates to be issuedUp to 25
          Domain validation methodsEmail validation, DNS validation
          Services to be integratedLoad Balancer, Global Edge
          Note

          The issued certificate does not support VPC WAF integration.

          Apply for a certificate

          To apply for a certificate, follow these steps:

          1. On the NAVER Cloud Platform console, click Services > Security > Certificate Manager in order.
          2. Click the Certificate List menu.
          3. Click the [Issue certificate] button.
          4. When the Issue certificate page appears, proceed with the following steps in order.

          1. Enter domain

          Enter the certificate name and domain name.

          • For Certificate name, enter a name that is different from other certificate names.
          • You can enter a minimum of 1 up to a maximum of 10 domain names.
            • Available domain name types
              • FQDN (e.g., www.example.com)
              • Apex domain (e.g., example.com)
              • Wildcard domain (e.g., *.example.com)

          2. Validation methods

          Select how to validate the ownership of the domain you've applied for. Once you select a validation method at this stage, you cannot change it later.

          • Email validation: a validation method that involves entering a validation value in the Certificate Manager console, which is sent to the common system administration address (a reserved email address).
          • DNS validation: a validation method checking if you have DNS editing permissions
          Note

          For more information on domain ownership validation methods, see the following section:

          3. Review and request

          Review the certificate information you requested and the validation method.

          • If you selected email validation, a validation request email will be sent to the common system administration address. Then, you can view the email address to which the validation request was sent and the status of the validation in the certificate details in the Certificate List.
          • If you selected DNS validation, a validation value is generated that you need to enter in the Record Name and Record Value of the DNS CNAME after the application is complete. Then, you can view the generated validation value and validation status in the certificate details in the Certificate List.

          4. Application completion

          After the application is complete, the certificate status appears as In Progress in the Certificate List.

          Conditions for a certificate issuance

          If validation is performed and the validation status of all domains applied is successful, the certificate will be issued. If issued successfully, the certificate status appears as Normal, and information such as issuance date, authentication start date, and authentication end date, etc. in the certificate details are updated.

          Note

          Validation status types include In Progress, Successful, Timeout, and Failed.

          Validation status

          Validation status can be viewed in Certificate List > Certificate Details.

          Validation StatusDescription
          In ProgressValidation values have been generated by the domain ownership validation method selected when applying for a certificate and are waiting for the validation results as normal.
          SuccessfulThe domain ownership validation that was in progress is now successful.
          TimeoutThe In Progress status has exceeded 72 hours. The domain ownership validation can no longer proceed after the timeout. Proceed to apply for a new certificate.
          FailedThe validation value generation failed with the domain ownership validation method selected when applying for a certificate. The status may fail if email validation fails to send email or DNS validation fails to generate a normal validation value.

          Validation method

          • If the validation method is email validation, at least 1 email address for each domain should complete a validation request and then the validation for that domain will be successful.
          • If the validation method is DNS validation, 1 DNS verification value is generated for each domain.
          • After the certificate application is complete, Certificate Manager checks for successful validation repeatedly for 72 hours. If the validation for all domains you applied for is successful, the validation status appears as Successful and the certificate is issued within minutes.
          • If the verification is not successful within 72 hours, the certificate status will be Timeout and the certificate can no longer be issued. If the validation status is Timeout, apply for a new certificate.
          Was this article helpful?
          What's Next
          Change password!
          Changing your password will log you out immediately. Use the new password to log back in.
          Change profile
          Success!
          First name must have atleast 2 characters. Numbers and special characters are not allowed.
          Last name must have atleast 1 characters. Numbers and special characters are not allowed.
          Enter a valid email
          Enter a valid password
          Your profile has been successfully updated.
          Logout