SSL is normally used in tandem with a Digital Certificate. A Digital Certificate gives your customers the assurance that your Web site is legitimately yours and not that of an impostor. It contains information about who owns the certificate (company name, domain name, contact address, etc.) as well as information about the issuing Certificate Authority (VeriSign, thawte, etc). It also provides you with a legal basis to perform transactions on the Internet.

The secure Web server you order from us has a Digital Certificate embedded in the httpsd binary. Because the Digital Certificate is embedded in the secure Web server binary, you can only support one Digital Certificate per Virtual Private Server. Therefore, your Virtual Subhosting customers which share the same Virtual Private Server must also share the same Digital Certificate.

The Default Digital Certificate

The default Digital Certificate embedded in your secure Web server is owned by our provider but includes the domain name instead of our domain name. It is a Thawte wildcard certificate, which allows it to be used in conjunction with any URL without generating a domain name mismatch warning.

NOTE: Thawte Digital Certificates are supported by Netscape 3.0+ and MSIE 4.0+ Web browsers. Concerning MSIE Web browser support for wildcard digital certificates, the Thawte Server Certificates FAQ contains the following information.

...Please note, however, that MSIE does not implement wildcard certificate name checking. Our own testing suggests that wildcards work with IE 4.0 and IE 5.0. Microsoft officially disapproves of wildcards, so we cannot guarantee that wildcarding will work with any Microsoft product for any period of time. We suggest you test this prior to making your request.

When you order SSL we will create a canonical domain name that points to your Virtual Private Server, like this:

NOTE: A canonical domain name is only automatically added once, when you order SSL for your Virtual Private Server. If you wish to have additional canonical domain names pointing to the same Virtual Private Server, these must be ordered separately.

For example, the canonical domain name for the Virtual Private Server with the account name its is:

The surfutah secure Web site can be accessed using this URL:

An ordering CGI can be accessed using HTML like this:

<form method="POST" action="">        

You may set up a similar service for all subhosted domains on your server by ordering your own Thawte wildcard certificate for your domain name.

VeriSign and Thawte Digital Certificates

If you wish to obtain and install your own VeriSign or Thawte Digital Certificate, see:

Please note: the information on this page applies to ITS web hosting plans. It may or may not apply to other environments. If you are looking for a feature described here, or better support from your hosting provider, please consider hosting your site with ITS!

1555 N Naperville/Wheaton Road, Suite 107
Naperville, IL 60563
phone 630.420.2550
fax 630.420.2771