OCIO Managed InCommon SSL Certificate Process

SSL Certificates

The Enterprise Security Group manages the SSL certificate process using InCommon as our vendor. It is possible to do wildcard certificates with this process, but only recognized owners of the domain space (i.e. the registered DNAs) may request wildcard certificates for their subdomains.

This is not a mandatory program; units are allowed to purchase from any retailer but OCIO IT Security offers this as a cost saving option with a reputable reseller that we have vetted.

We can only issue certificates in the osu.edu, osumc.edu and ohio-state.edu domains.

There is currently no cost associated with requesting a certificate, but we may request more information or decline a request if the information supplied is invalid, or we feel that application of the certificate is inappropriate.

Note: This process may take up to 3 business days to complete. SSL Certificates can only be requested by staff of the university.

Request Process

If you need an SSL certificate please follow these procedures to order one:

1. Go to: http://go.osu.edu/new-certificate

2. Paste your certificate CSR or click "Browse" to load it from a file. The form should automatically populate the rest of the required details. An explanation of additional fields is provided below.

3. Click "Create Request". Enterprise Security will be notified that you've ordered certificates.

Request Form Fields

  • CSR: Certificate Signing Request
  • Common Name: The fully qualified domain name you're requesting a certificate for.
  • Certificate Type: What type of certificate you're requesting. The three most common types are listed below.
    • InCommon SSL (SHA-2): A regular certificate. Most common choice.
    • InCommon Wildcard SSL Certificate (SHA-2): A wildcard certificate.
    • InCommon Multi Domain SSL (SHA-2): A certificate with Subject Alternative Names (SAN).
  • Certificate Term: How long the certificate should be valid for.
  • Server Software: The type of server this certificate will be installed on. Select "Other" if your server software is unlisted.
  • CC Download Links To: These people will be included on the certificate download e-mail
  • Comments: Any additional comments for this certificate.

Again, there is currently no cost associated with requesting a certificate, but we may request more information or decline a request if the information supplied is invalid, or we feel that application of the certificate is inappropriate.

If you need more information, please contact the Enterprise Security group at security@osu.edu.