You May Have to Reissue Your Certificate!!

Since announcing the acquisition, DigiCert has actively engaged with the security community to explore paths that address browser concerns about Symantec/Geotrust/Thawte/Rapidssl-issued certificates while balancing the SSL/TLS implementations currently deployed. 

Symantec-issued certificates impacted by browser timelines will need to be replaced to bring them under the new Digicert platform. These will be replaced at no cost to all certificates issued prior to December 1st 2017, and Digicert will work to ensure a smooth process. Many customers have already received information on certificate replacement, and more information will be forthcoming for affected parties.

Acmetek requests that all clients/users of the SSL Partner Center to perform these reissues as soon as possible to avoid warning messages within their Chrome browsers. More information can be found within when Acmetek clients sign into their SSL Partner Center.

Things to know:

  • This reissue only pertains to SSL Certificates where clients access websites/applications via Chrome. 
  • Symantec/Geotrust/Thawte/Rapid SSL Certificates Issued Prior to December 1st 2017 will have to be reissued into the new chain hierarchy under the Digicert umbrella. 
  • All Certificates Issued after December 1st 2017 will automatically be placed under the Digicert umbrella new chain hierarchy.
  • All Certificates Renewed after December 1st 2017 will automatically be put under this new chain hierarchy.
  • These Reissues will allow your certificates to be trusted by all versions of Chrome.
  • Symantec Roots are NOT being removed.
  • This does not effect code signing or other non SSL products.
  • Max Deadline to have all certificates reissued, or renewed is September 1st 2018. Some Reissues may need to be re-authenticated depending on when the certificate was last issued.

Digicert’s Authentication – Things to Know:

  • Digicert has a more robust, modern, and quick Authentication platform. Please review  Digicert’s Certificate Validation Process to know more.
  • Initially, The biggest hold-ups that customers can control are:
    • DCV (Domain Confirmation Verification) for security the verification goes to the domain admin, not the cert admin.
    • The verification call (making sure someone is aware at the main number that there will be a verification call within the next 24 hours)
    • Having you provide the correct legally registered name for the organization to avoid Digicert having to ask for it later.
    • After initial Authentication has been processed…as long as the contact and organization info is the exact same.. Digicert will streamline the processing for future orders
If you already know your Symantec/Geotrust/Thawte/RapidSSL Issued SSL Certificate is effected you simply need to perform a free reissue of your current certificate order. Acmetek client’s have had email notifications to SSL Order’s admin and technical contacts. SSL Partner Center users will see a notification popup in regards to the Google reissue on how to perform the reissue in their SSL Partner Center.

Posted by:
Dominic Rafael
Senior Lead IT Engineer
Be sure to Subscribe!!

LoadingAdd to favorites

About SSLSupportDesk:

SSLSupportDesk is part of Acmetek who is a trusted advisor of security solutions and services. They provide comprehensive security solutions that include Encryption & Authentication (SSL), Endpoint Protection, Multi-factor Authentication, PKI/Digital Signing Certificates, DDOS, WAF and Malware Removal. If you are looking for security look no further. Acmetek has it all covered!

Contact an SSL Specialist to get a consultation on the Website Security Solutions that can fit your needs.

Become a Partner and create additional revenue stream while the heavy lifting for you.