certificate

6 August 2020 at 12:17pm
Our certificate authority, QuoVadis, will start to restrict what can and cannot be entered in the 'OU' field (Organization Unit) for certificate requests. The 'OU' field, if required, is designed for divisions and departments within the organisation it is not mandatory and can be left blank.
The Jisc's Certificate Service's Terms and Conditions (found here https://community.jisc.ac.uk/library/janet-services-documentation/jcs-terms-and-conditions) includes a Sub-Local Registration Authority agreement. This is an agreement between the organisation as a member of the Certificate Service and Jisc, which is required as part of the service supported by QuoVadis CA, as the Certificate Authority signing issued certificates.
25 May 2016 at 11:12am
I'm pleased to announce that from the 12 May 2015 the Janet Certificate Service will be providing SSL certificates signed by QuoVadis CA.
20 November 2014 at 4:56pm
SHA-1 and Google Chrome: 20 November 2014 On 18 November Google released Chrome 39 which will now result in users visiting web services secured with SHA-1 certificates that expire in 2017 being shown a grey padlock with a yellow warning triangle, instead of the usual recognisable green padlock.
17 April 2014 at 4:39pm
If you have been affected by the OpenSSL bug, dubbed ‘heartbleed’ and need to replace SSL certificates as a result of this vulnerability, we are happy to replace the certificate credit used to obtain the replacement certificate. Registered authorised users should first obtain the new SSL certificate in the usual way from their Janet Certificate Service account using the following link:  https://community.ja.net/apps/janet-certificate-service.  
If the private key of a SSL server certificate is lost or stolen the certificate must be revoked immediately. More commonly, all SSL certificates which are still valid but are no longer used or required must also be revoked by the Certificate Holder. Every Certificate Authority manages their own certificate revocation lists (CRL) which are published showing the SSL certificates that should no longer be trusted. This enables web browsers in turn to warn users that a certificates used to secure a particular web service cannot be trusted and therefore the user should not proceed.
If the private key of a SSL server certificate is lost or stolen the certificate must be revoked immediately. More commonly, all SSL certificates which are still valid but are no longer used or required must also be revoked by the Certificate Holder. Every Certificate Authority manages their own certificate revocation lists (CRL) which are published showing the SSL certificates that should no longer be trusted. This enables web browsers in turn to warn users that a certificates used to secure a particular web service cannot be trusted and therefore the user should not proceed.
Before you can request SSL server or S/MIME email certificates you must first have some certificate credits in your account. These come in the form of bundles ranging from 1 to 250 credits for server and 1 to 5,000 for S/MIME. Credits can be purchased online through the portal, using a credit card or Purchase Order. [If you wish to buy credits using a Purchase Order please just have the PO number available which you enter online at the point of purchase] Please note the "Pay by PO" button is inactivated until the purchase total is £250 or greater.
Subscribe to certificate