Symantec/Digicert Actions Required – Google Reissue

You May Have to Reissue your SSL Certificate!!

Symantec/Digicert Actions Required - Google ReissueSince announcing the acquisition, Digicert has actively engaged with the security community to explore paths that address browser concerns about Symantec/Geotrust/Thawte/Rapidssl-issued certificates while balancing the SSL/TLS implementations currently deployed.

Symantec-issued certificates impacted by browser timelines will need to be replaced to bring them under the new Digicert platform. These will be replaced at no cost to all certificates issued prior to December 1st 2017, and we’ll work to ensure a smooth process. Many customers have already received information on certificate replacement, and more information will be forthcoming for affected parties.


Acmetek requests that all clients/users of the SSL Partner Center to perform these reissues as soon as possible to avoid warning messages within their Chrome browsers. 

To learn how to perform the reissue within your SSL Partner Center see the pdf article Actions Required Reissue(s) How to Reissue SSL from the SSL Partner Center


Things to know:

  • This reissue only pertains to SSL Certificates where clients access websites/applications via Chrome.
  • This does not effect Code Signing Certificates.
  • Symantec/Geotrust/Thawte/Rapid SSL Certificates Issued Prior to December 1st 2017 will have to be reissued into the new chain hierarchy under the Digicert umbrella.
  • All Certificates Issued after December 1st 2017 will automatically be placed under the Digicert umbrella new chain hierarchy.
  • All Certificates Renewed after December 1st 2017 will automatically be put under this new chain hierarchy.
  • These Reissues will allow your certificates to be trusted by all versions of Chrome.
  • Symantec Roots are NOT being removed.
  • This does not effect code signing or other non SSL products.
  • Some Reissues may need to be re-authenticated depending on when the certificate was last issued.
  • Newly issued 3 year certificates issued before Dec.1st and during 2017 must be reissued/renewed before March 1st 2018.
  • Max Deadline to have all certificates reissued, or renewed is September 1st 2018.Digicert’s Authentication – Things to Know:
    Initially, The biggest hold ups that customers can control are:
  • Digicert has a more robust, modern and quick authentication platform. But Knowing what has changed and how to approach it can be your key to a fast issuance with your certificate orders. Please review  Digicert’s Certificate Validation Process to know more.
  • DCV (Domain Confirmation Verification) for security the verification goes to the domain admin, not the cert admin.
  • The verification call (making sure someone is aware at the main number that there will be a verification call within the next 24 hours)
  • Having you provide the correct legally registered name for the organization to avoid Digicert having to ask for it later.
  • After initial Authentication has been processed…as long as the contact and organization info is the exact same.. Digicert will streamline the processing for future orders

 

Recent Posts

S/MIME for Outlook O365 Windows

Add to Favorites S/MIME Advantages of S/MIME Certificates S/MIME (Secure/Multipurpose Internet Mail Extensions) certificates offer several advantages when it comes to securing email communications. Here

Read More »

Abbreviations

Add to Favorites There are literally thousands of IT abbreviations out there. Many are concerned with the technical aspects of the computer, while others deal

Read More »

SSL Installation on Qmail

Add to Favorites SSL Installation on Qmail Qmail is a secure, reliable, efficient, simple message transfer agent. It is designed for typical Internet-connected UNIX hosts.

Read More »