Loading ...
Try HTTPCS +33 1 85 09 15 09
HTTPCS Support
Questions about out products and services
HTTPCS

HTTPCS

Audits

Audits

SSL Certificates

SSL certificates

HTTPCS Support

FAQ to understand the SSL certificate

Depending on the data transfer to be secured or the domain you wish to equip to obtain the HTTPS address, different certificates are for sale on our site. In the "Buy SSL certificate" page, a purchasing guide allows you to understand the different mentions of an SSL (OV, DV, EV, Wildcard, SAN, multi-domain...).

If you don't know which certificate to choose, our "Find the right certificate" page will guide you through a series of questions to help you find the right SSL certificate for your needs. In addition, for any additional request or additional information, our experts can also be contacted free of charge on +33 185 091 509.

The HTTPS address encrypts the data communicated between the users and the web application
It prevents against Clear Text Password and preserves the confidentiality of the information transferred from the web application or website to the web server. By encrypting its information,   the SSL certificate avoids the circulation of information seized by a malicious individual. The SSL certificate and its HTTPS address (Hypertext Transfer Protocol Secure) favors the natural referencing and reassures users thanks to the identifiable lock on browsers.

Once saved, data is vulnerable, displayed clearly on the server:
 HTTPCS (Hypertext Transfer Protocol Certified Secure) is a cyber security technology complementary to the SSL / TLS protocol. With its certification seal as a token of confidence, it guarantees the reliability of a site or a web application to its users. By enabling the correction of security flaws and web vulnerabilities before they are exploited by malicious individuals, it monitors the security, the integrity and the compliance of data on a daily basis: Page, CMS, Image, Framework, Libraries Java Script…

DV : Certificate with Domain Validation

Includes HTTPS address + green lock. Ideal for small businesses with low traffic, this domain ownership verification carried out every 2 years minimum can require the generation of a CSR, the validation of an email sent to a general address or Whois and the uploading of a file on the server.

OV: Certificate with Organization Validation

Includes HTTPS address + green lock: Exclusively for professionals, this validation is carried out every two years and offers the highest authentication guarantee for a business to its users. It can require the generation of a CSR, the referencing of the business in official sites such as yellow pages or Kompass; forwarding proof of existence of the business or receiving a phone call.

The Extended Validation option gives the highest level of authentication possible. This secure green address bar increases users’ confidence. The certificate with EV is delivered after an OV (Organization Verification) and includes the https Address + green lock + green bar with company name.

Extended validation (EV)

Offering the greatest transparency to users, particularly against phishing, it is recommended for the e-commerce, banking, telecommunications and industrial sectors.

Certificates using SAN (Subject Alternative Names) are powerful tools that secure multiple domain names in an efficient and cost effective way. Issued after an OV, they secure multiple domains and sub domains.

Issued after an OV or a DV, the wildcard certificate secures an unlimited number of sub domains on a server of an unlimited number of servers (details on the product information sheet of the certificate) During the generation of the CSR, the "*" character must be used at the start of the common name.

Use our free online tool to test a CSR.

Use our free online tool to convert an SSL certificate (PEM, DER, PKCS#7, PKCS#12).

To check that your SSL certificate (https:// address) has been correctly installed, we invite you to use our online tool to check the validity of the SSL certificate.

Once you created a “fileauth.txt” file and followed carefully our tutorials, you just have to wait! The Certificate Authority robot will perform an automated check in order to detect the file. If it’s detected, the domain ownership will be approved and your certificate will be issued.

If your choose a validation by file, you’ll necessarily have to create the “fileauth.txt” file. To get around that step, you may validate the certificate ownership by email.

You can change the validation method after you placed an order by logging in to your user account.

Once you’re logged in, click on the “Options” button.

Fileauth options

Then, click on the “Cancel & Modify” button.

Fileauth cancel & modify

No need to reissue your certificate! You just have to copy the private key, the public key and the SSL certificates (server, temporary and root) to the new server. To help you set up your certificate, you can follow one of our tutorials on our website.

The delivery time mentioned when ordering is only given as an indication. The delivery time falls within the responsibility of the Certificate Authority. However, if you consider that the delivery period takes much more time than the one announced, please check:

  • your emails and spams.
  • in case of validation by file, check the file and make sure that its content is accurate.

The delivery time essentially depends on the kind of certificate that you ordered. Therefore, delivering an OV certificate takes more time than a DV certificate.

On our website, we mention an average delivery time. However, many factors can delay the certificate validation by the Certificate Authority. If you consider that the certificate delivery takes much more time than announced on our website, you can cancel your order and get a refund from your user account.

SSL certificate options

Now you only have to click on the “Request refund” button.

SSL certificate request refund

For obvious security and confidentiality reasons, we don’t store your private key. Only the public key is required to place an order. If you lost your private key, you must generate all the keys again. Therefore, save preciously your private key when it’s generated.

If you want to get a new private key, you must reissue the certificate. Go to your user account to perform the following procedure:

Private key

Then, click on “Options”.

Private key options

And finally, click on the “Reissue” button.

Private key reissue

No matter the reason, you can request a refund for your SSL certificate within 30 days after ordering.

In order to do this, you must go to your user account.

Refund

Then, click on “Options”.

Refund options

Finally, click on the “Request refund” button.

Request refund

If you placed an order but didn’t get your certificate yet, here’s the procedure to change your contact details:

Contact details options

Once you clicked on “Options”, select the “Cancel & Modify” button.

Contact details cancel & modify

If you want to change your contact details after purchasing your SSL certificate, you must reset your order within 30 days after placing it. By resetting the order, the current certificate will be canceled and you’ll have to go through all the validation steps again. In order to do this, follow these steps:

Contact details after purchasing your SSL certificate

When you’re in the option menu, click on “Cancel & Modify”.

Contact details  click on cancel & modify

An SSL certificate is standard: it is supported by almost every server. Nevertheless, it turns out that some servers require you to convert the file extension. In that case, you can use our SSL converter for free.

In other cases, some hosts deliberately prevent and/or restrain you from setting up SSL certificates from specific brands. In this situation, please contact our technical support.

Nothing could be more simple! A few weeks before your certificate expiration date, you can renew it right from your user account. You can extend your certificate validity as from its expiration date.

To renew your SSL certificate from your user account, follow these steps:

Go to your user account and click on “Renew”.

Renew my certificate

If you successfully just paid, please wait a few minutes in order for your payment to be processed by our staff. Beyond 30 minutes, something probably went wrong with your payment to our banking partner. In that case, please consider re-initiating your payment.

Ultimately, if your first payment went through a few hours later, we’ll immediately contact you and refund the overpayment.

This message means that we’re waiting for the Certificate Authority’s answer. If you consider that the validation period takes much more time than announced, please check:

  • your emails and spams.
  • in case of validation by file, check the file and make sure that its content is accurate.

Theoretically, no. However, we recommend that you switch all your website sources into HTTPS to avoid any mixed content. If you want to make sure, you can try our HTTPCS Integrity solution for free.

For security reasons, HTTPCS never saves your payment method. You payment details are stored by our business partner, Stripe, which is compliant with the GDPR and the PCIDSS standard.

You can delete your card at any time by following the procedure below:

Delete the credit card

Then, click on “Payment management”.

Delete the credit card on payment management

Then on “Payment methods”.

Delete the credit de paiement moyens de paiement

Finally, in the payment management menu, click on “Delete my card”.

click on delete my card

If you didn’t get a confirmation email 30 minutes after ordering, including in your spam folder, and that your order still displays “pending payment”, it means that something went wrong with your payment. In that case, please re-initiate payment with another credit card.

Due to high transaction fees, we had to remove PayPal from our website. However, you can still pay for your order with other payment methods.

Any refund request made from your user account will processed within 24 business hours. However, it may take a few days for the payment to be credited to your account.

Yes, you can choose another SSL Certificate Authority. In order to do this, you must place a new order from our website, then choose a new Certificate Authority.

As cybersecurity experts, we strongly advise you to have an SSL certificate on your website in order to secure all communications with users and avoid warning messages on internet browsers. Nevertheless, if you really want to uninstall your SSL certificate, you can do it at any time by disabling it from your server.

You can delete your HTTPCS account right from your user account. In order to do this, click on the “Account information” tab.

How can I delete my HTTPCS account?

Once you’re on the account information page, click on “Account deletion”.

Account deletion

If you can’t seem to create the “.well-known” folder, you can choose a validation by email. To do this, go to your user account and click on “Options”.

Create the well-known folder

Then, click on “Cancel & Modify” to change the validation method.

Click on cancel & modify to change the validation method

It’s likely that your certificate is incorrectly installed on your server. If you haven’t done it yet, you should follow our installation tutorials.

If you still can’t seem to set up your SSL certificate after following thoroughly our tutorial, feel free to reach our technical support. You can also ask for a quote to get one of our cybersecurity experts to set it up remotely.

Yes, you can reissue an SSL certificate. This operation can be performed from your user account.

Issue an SSL certificate a second time

Then, click on “Options”.

Issue an SSL certificate a second time options

Finally, you just have to click on “Reissue” and that’s it!

Click on reissue

If you chose a validation by email, you must have an address with a specific root and the domain name of your company. For instance, to validate an SSL certificate for the Ziwit.com website, you must have one of the following addresses:

  • admin@ziwit.com
  • administrator@ziwit.com
  • hostmaster@ziwit.com
  • webmaster@ziwit.com
  • postmaster@ziwit.com

If that’s not already the case, we recommend you choose a validation by file or create an address with one of the roots above in order to validate the order.

If you already ordered and want to change the validation method from your user account, it’s not too late!

Change the validation method from your user account

Click on “Cancel & Modify”, then you’ll be able to change the certificate validation method.

Change the validation method click on cancel & modify

To validate your domain using the File Auth DCV method, DigiCert provides you with a URL and a token value. The URL does two things:

  • It contains the FQDN (fully qualified domain name) of the domain you want us to validate.
  • It tells us where to look so that we can find the fileauth.txt you add the generated random value to.

Below are some of the more common issues we run into when troubleshooting the reason File Auth checks fail. The File Auth DCV process was designed to keep an unauthorized individual from using a domain they do control to validate and get a certificate for a domain they don't control, such as one of yours.

Don't Modify the URL Provided

If you modify the URL in any way (change to the FQDN, capitalize a lowercase letter, forget to add a period, etc.), we won't find the fileauth.txt file with our generated random value in it.

For example, if we provide you with this URL: [http://yourdomain.com]/.well-known/pki-validation/fileauth.txt, don't add www to it ([http://www.yourdomain.com]/.well-known/pki-validation/fileauth.txt) or capitalize a letter that wasn't capitalized in the original URL ([http://yourdomain.com]/.well-known/PKI-validation/fileauth.txt).

Don't Place It on a Different Domain or Subdomain

To complete domain control validation for yourdomain.com, place the fileauth.txt file on the exact domain you want validated; the one we generate the URL for. We won't look at a different domain or subdomain to find our random token. We only look at the domain you want validated (such as the domain on your certificate order).

For example, if you need yourdomain.com validated so that you can request SSL/TLS certificates for it, we generate a URL for this domain - [http://yourdomain.com]/.well-known/pki-validation/fileauth.txt. Don't place the fileauth.txt file on sub.yourdomain.com or modify the URL and place it on yourotherdomain.com - it won't work. We can't find the fileauth.txt file on these domains - only on yourdomain.com.

yourdomain.com and www.yourdomain.com

If you want us to validate www.yourdomain.com and yourdomain.com, place the fileauth.txt file on yourdomain.com. This validates both yourdomain.com and www.yourdomain.com. We won't look at www.yourdomain.com to find the fileauth.txt file.

Free Base Domain SAN

If you received a free base domain SAN on your SSL certificate, make sure to place the fileauth.txt file on the base domain. We need to validate the domain on the SSL certificate order.

Don't Include Any Additional Content in the fileauth.txt File

When you create the fileauth.txt file, copy the DigiCert provided token value and paste it in the file. Don't add the word "token" or any other text.

Because we only read the first 2kb of the fileauth.txt file, additional text blocks us from validating your control over the domain.

Don't Place the fileauth.txt File on a Page with Multiple Redirects

When using the File Auth method for domain validation, the fileauth.txt file may be placed on a page that contains up to one redirect. With a single redirect, we are still able to locate the fileauth.txt file and verify your control over the domain.

For example, you need a certificate for http://example.com, but the page redirects to https://www.example.com. That's okay. You can place the fileauth.txt file on the http://example.com page. We will still be able to follow the single redirect to validate your control over http://example.com.

However, if you place the fileauth.txt file on a page with multiple redirects, we won't be able to locate the file. Multiple redirects block us from locating the fileauth.txt file and validating your control over the domain.

For example, you need a certificate for http://multiple-redirect.com, but the page redirects to https://www.multiple-redirect.com and then redirects again to https://www.single-redirect.com. In this case, you must still place the fileauth.txt file on the http://multiple-redirect.com page. However, you will need to disable the second redirect (https://www.single-redirect.com) long enough for us to locate the fileauth.txt and validate your control over http://multiple-redirect.com.

Every SSL Certificates have a maximum validity period of 1 year since September 2020.

However, in order to make life easier for our customers and take advantage of attractive prices, we offer multi-year offers up to 5 years.

To take advantage of the maximum duration of your certificate (2 years and more), you will have to reissue your certificate after 1 year of validity. This SSL certificate reissuance is free. A CSR will be required to perform the procedure.

Following the reissue, you will get a new certificate (always with a maximum validity of 1 year). If you have purchased a certificate for 3 years, you will need to do this twice during the life of the certificate.

As with the renewal, you will receive warning emails to reissue your SSL certificate before the expiry date.

To reissue your certificate:

Issue an SSL certificate a second time

Then, click on “Options”.

Issue an SSL certificate a second time options

Finally, you just have to click on “Reissue” and that’s it!

Click on reissue