With Managed PKI for SSL, administrators acquire,
issue, and manage all Premium SSL, Premium SSL with EV, Standard SSL
with EV, Standard SSL, Intranet SSL, and Code Signing Certificates for
their enterprise from one Web-based portal. See Managed
PKI for SSL—SSL for the Enterprise
| What's this? |
| SSL Encryption | SSL Certificates bind an identity to a pair of electronic keys that can be used to encrypt and sign digital information. When an SSL handshake occurs between a client and server, a level of encryption is determined by the client browser, the client operating system, the server configuration, and the SSL Certificate. Many millions of Internet users worldwide still use browsers that will not step up to 256-bit encryption unless there is an SGC-enabled certificate on the server. VeriSign is the leading SSL provider of SGC-enabled SSL Certificates, enabling 128- or 256-bit encryption to over 99.9% of Web site visitors.
Go to: SSL Security: How It Works |
| Validity Period | Managed PKI for SSL Certificates are available for 1, 2 or 3 year validity periods and EV SSL are available for 1 or 2 years. All certificates may be renewed within 90 days of expiration. The validity period begins with issuance. Ensure continuous service without interruption by renewing in advance of expiration. Managed PKI for SSL Control Center reports show certificates expiring in 30, 60, and 90 days.
Back to Top |
| VeriSign Secured Seal | The VeriSign Secured Seal is a static or animated graphic, available in 13 languages, displayed on Web sites protected by VeriSign SSL Certificates. When visitors click the seal, a pop-up window from an SSL protected VeriSign server shows the certificate's authenticated domain name, validity period and organization name. The VeriSign Secured Seal is the most recognized security mark on the Internet and can increase the confidence of your site visitors. Plus, the VeriSign Secured Seal has EV Upgrader™($300 value) built into it so that you can enable all site visitors using IE7 on Windows? XP to fully experience your Extended Validation SSL Certificates. See VeriSign Secured Seal Research Review.
Go to VeriSign Secured Seal Program
Back to Top |
| Web-based Management Interface | Managed PKI for SSL features a Web-based portal for authenticated administrators to buy and manage multiple certificates for multiple organizations from one centralized account. The Control Center makes it easy to purchase, enroll, approve, issue, reject, revoke, replace, and renew all types of VeriSign SSL Certificates from one Web-based portal with just a few clicks.
Back to Top |
| Green Address Bar | Internet browsers that support the Extended Validation Standard make it easy to see that a site is secure. When users navigate to a Web site secured by an Extended Validation (EV) SSL Certificate, the address bar turns green. In addition, the name of the organization listed in the certificate and the security vendor appear next to the address, giving users an easy way to confirm the identity of the site. Microsoft® Internet Explorer 7 is the first browser to adopt the new standard.
Go to: SSL Security and Extended Validation
Back to Top |
| Extended Validation | In 2006, a group of leading SSL Certificate Authorities (CAs) and browser vendors approved standard practices for certificate validation and display called the Extended Validation Standard. To issue an SSL certificate that complies with the standard, a CA must adopt the extended certificate validation practice and pass a WebTrust audit. The Extended Validation process requires the CA to authenticate the certificate applicant's domain ownership and organizational identity, as well as the individual approver's employment with the applicant, and authority to obtain the Extended Validation SSL Certificate.
Go to: Process to obtain an Extended Validation SSL Certificate
Back to Top |
| Authentication | Authenticated administrators can purchase certificates through Managed PKI for SSL. Authority to approve certificates can be delegated by an administrator with a security officer privilege. If Managed PKI for SSL will be used to purchase EV SSL Certificates, the customer must go through additional steps to qualify to request EV SSL Certificates. VeriSign applies the industry's most rigorous authentication methodology to protect your brand identity and your site visitors' online experience. Our authentication procedures undergo annual independent SAS 70 Type II audits and are WebTrust certified. Managed PKI for SSL accounts with Extended Validation SSL Certificates will be validated each year.
E-Commerce, Trust, and SSL
Back to Top |
| Instant Issuance | Managed PKI for SSL administrators issue pre-purchased certificates instantly. Administrators can set delegated administrator roles and privileges for issuance by organization level. Replenishment email alerts help administrators ensure certificate availability.
Back to Top |
| Unlimited Replacement | VeriSign will replace SSL Certificates purchased through Managed PKI for SSL at no cost and offers 30-day free revocation. A replacement SSL Certificate must have the same Distinguished Name as the original certificate.
Back to Top |
| Reporting | Extensive reporting tools enable Managed PKI for SSL customers to track the lifecycle of each certificate. View detailed or summary reports by certificate type, status, organization, and organizational unit. Generate reports based on expiration date in 30, 60, or 90 days.
Back to Top |
| Customizable Enrollment Pages | Multilingual subscriber enrollment pages offer language selection options for U.S. English, French, German, Spanish, Danish and Swedish. Administrators can customize subscriber pages for users to request, renew, and revoke certificates.
Back to Top |
| Audit Trails | Audit trails log administrator actions across organizations and certificates to help you manage SSL certificates across the enterprise.
Back to Top |
| Delegated Administration | Delegate administration at the organization and organizational unit levels. Roles-based assignments set privileges and responsibilities to manage certificates, security, and configuration. Retain revocation capability at the administrator level or allow subscribers to revoke certificates.
Back to Top |
| Security | Administrators log-in using two-factor authentication. Retail blocking prevents business units and subsidiaries from purchasing individual certificates through VeriSign.
Back to Top |
| Warranty | VeriSign SSL Certificates are covered by the NetSure Protection Plan with up to $250,000 in warranty protection. NetSure protects certificate holders against certain losses resulting from breach by VeriSign of the warranties included in your VeriSign SSL Certificate.
Back to Top |
| Support | Managed PKI for SSL customers have 60 days (from the date an account is activated) of support at no charge, with the option to purchase extended support plans including a dedicated account representative, assigned technical contacts, and 24/7 support. Our online support knowledge base and support documents provide additional assistance at all times to all customers.
SSL Support
Back to Top |
| Browser Compatibility | VeriSign SSL Certificates are compatible with virtually every browser in use today. SGC-enabled SSL Certificates enable every site visitor to connect at the strongest SSL encryption available to them.
SGC: Strongest SSL Encryption
Microsoft Internet Explorer 7 supports Extended Validation SSL. Firefox and Opera have announced their intention to support Extended Validation SSL in upcoming browser releases.
All VeriSign Secured Seals come with EV Upgrader,™ ($300 value) the first ever technology that automatically enables all visiting Windows XP clients to "upgrade" and experience the Extended Validation interface enhancements in IE7. Without EV Upgrader, only Windows Vista clients will see the green address bar on your site.
Back to Top |
| Domains | With Managed PKI for SSL, administrators can request certificates for multiple domains, assign domains to organizations, and delegate administration of certificates through the Managed PKI for SSL Control Center. SSL Certificates can only be used to secure the domain(s) specified during the enrollment process. Each domain requires a separate SSL Certificate.
Back to Top |
| Usage | Managed PKI for SSL gives administrators a single-point of control to buy all types of SSL Certificates and manage requests for SSL Certificates for multiple servers deployed across various divisions and locations. Install SSL Certificates on Web servers, mail servers, e-commerce sites, and FTP sites - wherever customers, employees, or other users provide sensitive information or log on to an account.
E-Commerce, Trust, and SSL
Back to Top |
| Licensing | If you have multiple servers hosting a single domain, you can secure all of them with a single certificate licensed for up to 5 servers. VeriSign's licensing policy contains provisions for sharing certificates in multiple server configurations for redundant server backups, server load balancing, SSL acceleration, and shared hosting. To secure multiple servers in other configurations or in multiple domains, VeriSign recommends Managed PKI for SSL.
SSL Certificate Licensing
10 Tips for Managing Multiple Servers
Back to Top |
Worldwide Sites
