Symantec/Digicert Actions Required – Google Reissue

You May Have to Reissue your SSL Certificate!! Since announcing the acquisition, Digicert has actively engaged with the security community to explore paths that address browser concerns about Symantec/Geotrust/Thawte/Rapidssl-issued certificates while balancing the SSL/TLS implementations currently deployed. Symantec-issued certificates impacted by browser timelines will need to be replaced to bring them under the new Digicert platform. These will be replaced at no cost to all certificates issued prior to December 1st 2017, and we’ll work to ensure a smooth process. Many customers have already received information on certificate replacement, and more information will be forthcoming for affected parties. Acmetek requests that all clients/users of the SSL Partner Center to perform these reissues as soon as possible to avoid warning messages […]

Read More

Intermediate CA Certificates: Symantec – Geotrust – Thawte – RapidSSL

Certificate Authorities will almost always require the installation of Intermediate CA certificates to have SSL/TLS Certificates to be fully trusted in all browsers. Think of them as supplementary certificates that help the trust of your SSL Certificate to all the different browsers, and operating systems that exist out in the world. If you are having Trust issues on certain browsers, and other browsers are fine, then more than likely you’re missing the installation of an Intermediate CA. Intermediate CA’s also known as Chain Certificates are usually sent to you within or attached to your email SSL Certificate Fulfillment email. Alternatively you can always manually retrieve them from our website. Intermediate CA Certificates are unique and dependent on the product type […]

Read More

Symantec/Digicert- Google Reissue You May Have to Reissue Your SSL Certificate.

You May Have to Reissue Your Certificate!! Since announcing the acquisition, DigiCert has actively engaged with the security community to explore paths that address browser concerns about Symantec/Geotrust/Thawte/Rapidssl-issued certificates while balancing the SSL/TLS implementations currently deployed.  Symantec-issued certificates impacted by browser timelines will need to be replaced to bring them under the new Digicert platform. These will be replaced at no cost to all certificates issued prior to December 1st 2017, and Digicert will work to ensure a smooth process. Many customers have already received information on certificate replacement, and more information will be forthcoming for affected parties. Acmetek requests that all clients/users of the SSL Partner Center to perform these reissues as soon as possible to avoid warning messages […]

Read More

Symantec Intermediate CAs – Secure Site & Secure Site Pro

Symantec SSL/TLS certificates require the installation of Symantec Intermediate CAs certificates to be fully trusted in all browsers. Depending on your product type you will need the Symantec intermediate listed below. Your product type is listed in the beginning of your email as specified during enrollment. Alternately you can find your product type within your enrollment portal. To download your Intermediate CAs certificate perform the following: Scroll down to your Symantec certificate product type. With your mouse click and drag to select the entire code including the Begin Certificate and End Certificate headings/footers, and Copy (Crtl + c) the code. —–BEGIN CERTIFICATE—– AND —–END CERTIFICATE—– Paste (Ctrl + v) the copied contents into a plain text editor such as Notepad […]

Read More

Symantec Roots

Below are the Symantec Root Certificates for all Symantec SHA2 products. Symantec Secure Site Symantec Secure Site Pro Symantec Secure Site with EV Symantec Secure Site Pro with EV Secure Site Wildcard To download your Root CA certificate perform the following: Scroll down to your Symantec certificate product type. With your mouse click and drag to select the entire code including the Begin Certificate and End Certificate headings/footers, and Copy (Crtl + c) the code. —–BEGIN CERTIFICATE—– AND —–END CERTIFICATE—– Paste (Ctrl + v) the copied contents into a plain text editor such as Notepad or Vi. Do not use Word or Notepad ++ as they like to add characters and corrupt the code. Save the file with a .txt, […]

Read More

Symantec Intermediate CAs

Symantec SSL/TLS certificates require the installation of Intermediate CA certificates to be fully trusted in all browsers. Depending on your product type you will need the Symantec intermediate listed below. Your product type is listed in the beginning of your email as specified during enrollment. Alternately you can find your product type within your enrollment portal. To download your Intermediate CAs certificate perform the following: Scroll down to your Symantec certificate product type. With your mouse click and drag to select the entire code including the Begin Certificate and End Certificate headings/footers, and Copy (Crtl + c) the code. —–BEGIN CERTIFICATE—– AND —–END CERTIFICATE—– Paste (Ctrl + v) the copied contents into a plain text editor such as Notepad or […]

Read More

Symantec Intermediate CAs Secure Site EV & Secure Site Pro EV

Symantec SSL/TLS certificates require the installation of Intermediate CA certificates to be fully trusted in all browsers. Depending on your product type you will need the Symantec intermediate listed below. Your product type is listed in the beginning of your email as specified during enrollment. Alternately you can find your product type within your enrollment portal. To download your Intermediate CAs certificate perform the following: Scroll down to your Symantec certificate product type. With your mouse click and drag to select the entire code including the Begin Certificate and End Certificate headings/footers, and Copy (Crtl + c) the code. —–BEGIN CERTIFICATE—– AND —–END CERTIFICATE—– Paste (Ctrl + v) the copied contents into a plain text editor such as Notepad or […]

Read More

“WannaCry” Blocked by Symantec – Best Practices Against Ransomware.

A world wide cyberattack that caused chaos On May 12, 2017  is still ongoing involving a ransomware named WannaCry (aka WCry). These attacks are targeting and have affected users from various countries across the globe. The WannaCry threat will encrypt data files on infected computers and ask users to pay a $300 US ransom in bitcoin to decrypt their files. A specific exploit against this vulnerability, code-named “Eternal Blue”, and was made available through a dump of various attack tools by the group Shadow Brokers, on April 14, 2017. Analysis indicates the attack spreads through an SMB remote code execution in Microsoft Windows. This was announced and patched by Microsoft on March 14, 2017. That is two whole months where if a patch […]

Read More

Symantec – Report Code Signing Misuse

Report Code Signing Misuse With Symantec Certificates. If you have encountered software signed by a Symantec code signing certificate that you believe is being used for malicious or harmful purposes, please report it to Symantec using this form. Examples Of Misuses Of A Symantec Code Signing Certificate Include But Are Not Limited To: The code acts as “spyware” The code is included as part of a “phishing” scheme Misleading descriptions in the code The code is used for “man-in-the-middle” attacks Symantec code signing certificates are used by software publishers to assure their customers that software they distribute has not been altered or damaged after it is signed. When you accept software signed by a Symantec code signing certificate, you have the assurance that Symantec has authenticated the […]

Read More