Certificate Service

Last updated: 
4 months 2 weeks ago
Group Manager
Welcome to the Jisc Certificate Service group. For an update on the NEW Jisc certificate service please follow the below link. The New Jisc Certiface Service  The service offers a number of different X509 SSL certificates, including Extended Validation certificates that give users the highest possible assurance, as well as S/MIME email certificates for digitally signing emails. Jisc has an agreement with the Certificate Authority, QuoVadis who is the provider of the certificates. The service has been running since 2006 and has issued many thousands of certificates to organisations in UK research and education. This is a Community group where users can obtain relevant information, receive service updates and provide feedback.
Log in to request membershipHide group description

Group administrators:

Recent members:

SHA-256 service announcement

30 March 2015 at 1:32pm

Availability of SHA-256 certificates: 14 October 2014
We’re pleased to announce an agreement has been reached between TERENA and Comodo which will enable customers to obtain SHA-256 certificates. This is available with immediate effect and all certificates obtained from the service will be by default SHA-256.

As a result of the deprecation of SHA-1 certificates expiring in 2017 by the all the major web browsers, all customers who obtained 3-year certificates in 2014 are advised to replace them over the next few months. To help make this process easier for you, we are automatically crediting affected accounts to enable the replacement of these certificates at no cost.

We apologise for any inconvenience that this issue has caused our customers and thank you for your patience.

If you have any questions or queries, please contact the Janet Service Desk on : 0300 300 2212 or email certificates@ja.net

New SHA-2 intermediate certificates
Please be aware that the two intermediate certificates used to sign the new SHA-256 certificates are different to those used to sign SHA-1 certificates. When you replace certificates with SHA-256 please make sure you also install these other two intermediates, namely TERENASSLCA2 and USERTrustRSAAddTrustCA. The root certificate, AddTrustExternalCARoot, remains the same.

To keep up with any service announcements please join this JCS Community Group.

  • Twitter logo
  • LinkedIn logo
  • Google+ logo
  • Reddit logo
  • StumbleUpon logo
SHA-1
SSL
jcs
Certificate Service