Question 1

How to install Root & Intermediate CA Certificates on Android?

Accepted Answer

On Android 11+, to install a CA certificate, users need to manually install the certificate through device settings, as automatic installation is restricted.

Question 2

How to get SSL certificate for an IP address, server name, or localhost?

Accepted Answer

Single-domain and Multi-Domain certificates allow one to get SSL certificates for internal or external IP Addresses, Server Names, and localhosts.

Question 3

Why am I getting an error, even after installation of Root Certificates on the Client PC?

Accepted Answer

This sometimes happens due to Antivirus or End Point Security software. They don’t trust non-public Root Certificates and tell the browser that the Intranet Root Certificate is not trusted.

Question 4

How to create CSR with SAN values using OpenSSL?

Accepted Answer

For creating CSR with SAN values (X.509 v3 Extension) it’s important to create a configuration file with the required certificate details. Execute following command in openssl.

Question 5

Can you provide technical details of SecureNT Intranet SSL certificates?

Accepted Answer

Certificates are issued by default with RSA Encryption, 2048 bit Key Size, and Sha256 Hash Algorithm. The Root Certificate chain is from Secure Network Traffic.

Question 6

Are SecureNT Root Certificates trusted by the browsers?

Accepted Answer

Intranet SSL certificate’s root certificate chain is not trusted by default on popular browsers like Chrome, Edge, Internet Explorer, Safari, Firefox, etc. This means that unless certain steps are taken, a client PC will get a “certificate not trusted” error when accessing a website hosted on a server with Intranet SSL.

Question 7

How to install Intranet SSL Certificate on Tomcat or JBoss?

Accepted Answer

The certificate zip file contains the server certificate in PFX (PKCS12) format. It needs to be imported into the Tomcat/JBoss Keystore file using the appropriate import command.

Question 8

How to get Intranet SSL from your website?

Accepted Answer

This video shows step by step how to get SecureNT Intranet SSL from our website.

Question 9

What are the browser restrictions for Intranet SSL?

Accepted Answer

Browsers display warning messages when root certificates are not publicly trusted. You may need to import the provided root certificate into all client browsers on your intranet manually or via GPO.

Question 10

Can SecureNT certificates be used with Windows domain-joined machines?

Accepted Answer

Yes, SecureNT certificates can be distributed via GPO to all domain-joined computers making deployment and trust easier in Active Directory environments.

Question 11

Do you provide trial certificates?

Accepted Answer

Yes, SecureNT provides a free trial certificate for evaluation and testing purposes with most features of the paid certificate.

Question 12

What is the validity of SecureNT certificates?

Accepted Answer

You can purchase SecureNT certificates for durations like 1 year, 2 years, or custom timeframes as per your organization’s requirements. Trial certificates are valid for 90 days.

Question 13

What file formats are supported for server certificates?

Accepted Answer

We provide certificates in PEM, PFX (PKCS12), and sometimes DER format, suitable for popular servers and systems.

Question 14

How do I renew or reissue my certificate?

Accepted Answer

You can renew or reissue a SecureNT certificate from your account dashboard. For reissuance, you may be required to submit a new CSR.

Question 15

Will Intranet SSL work behind firewalls?

Accepted Answer

Yes, Intranet SSL certificates are designed to work for web applications and servers accessible only within the organization’s network, including those behind firewalls with no public access.

Question 16

How secure are SecureNT certificates?

Accepted Answer

We use industry-recommended best practices, strong cryptography and secure lifecycle management. Root keys are stored in dedicated, protected appliances.

Question 17

Can SecureNT certificates be used on load balancers and reverse proxies?

Accepted Answer

Yes, SecureNT certificates in PEM and PFX formats can be imported into popular load balancers, reverse proxies, and application delivery controllers.

Question 18

Do you support multi-domain or SAN certificates?

Accepted Answer

Yes, SecureNT supports Subject Alternative Name (SAN) certificates including multiple domains, server names, IPs, and localhost as SAN values.

Question 19

How to import root or intermediate certificates on Windows?

Accepted Answer

Use certmgr.msc or MMC snap-in to import root and intermediate certificates into Trusted Root Certification Authorities and Intermediate Certification Authorities stores.

Question 20

What are the advantages of Intranet SSL?

Accepted Answer

Genuine TLS encryption for sensitive internal resources with the flexibility of IP, localhost, server names, and custom SAN, even for non-public systems.

Question 21

How to install root and intermediate certificates on Linux?

Accepted Answer

Add the root certificate to /usr/local/share/ca-certificates/ and run update-ca-certificates. For other distros, refer to the specific CA trust policy.

Question 22

How to check if root certificate is installed on client computer?

Accepted Answer

In Windows, use certmgr.msc. On Mac, use Keychain Access. On Linux, use openssl or system-specific CA trust tools to verify root certificate presence.

Question 23

What types of certificates are issued?

Accepted Answer

We offer single domain, multi-domain (SAN), wildcard, and device SSL certificates for different internal needs.

Question 24

Is client authentication supported?

Accepted Answer

Yes, SecureNT supports mutual TLS and client SSL certificate authentication for internal applications.

Question 25

What support resources are available?

Accepted Answer

You can reach out through our support portal, live chat, or email for help with anything related to SecureNT certificates.

Question 26

How to get my trial certificate activated?

Accepted Answer

Register at intranetssl.net, choose trial, complete validation, and download your certificate ZIP file.

Question 27

Can I get certificates for legacy systems or devices?

Accepted Answer

Yes, we support legacy systems, devices and apps with custom certificate formats and compatibility settings.

Question 28

How do I contact your team for custom requirements?

Accepted Answer

Email, chat or support form will put you in touch with our team for any custom technical or business needs.

Question 29

Do you offer volume discounts or partner programs?

Accepted Answer

Yes, eligible organizations and partners receive discounts for volume certificate purchases or under partner arrangements.

Question 30

How do I get updates on new features or changes?

Accepted Answer

Subscribe on our website to receive updates, release notes and information on new features.

Question 31

What is the pricing of SecureNT Intranet SSL Certificates?

Accepted Answer

SecureNT Intranet SSL Certificates are competitively priced. The price of a SecureNT Intranet SSL / TLS Certificate for 1 Year is: Single Domain USD 110, INR 8,000; Multi-Domain (1+4 SAN) USD 246, INR 17,600; Wildcard USD 270, INR 20,000; Multi-Domain Wildcard (1+4 SAN) USD 444, INR 32,000

Question 32

Why do I need to install the CA cert on the client desktops also?

Accepted Answer

Our CA certificates are not trusted by browsers and client OS like Windows by default. You need to install the CA certificate on each client to avoid trust errors when using internal SSL.

Question 33

How to deploy SSL certificate in Windows Azure environment?

Accepted Answer

For Azure, request a special password-protected PFX file with Triple DES encryption. Follow instructions in our documentation.

Question 34

While requesting Intranet SSL, should I generate CSR or just give certificate details?

Accepted Answer

It is recommended to generate CSR on your own server for security of your private key. Or, you can submit details and receive a certificate with auto-generated private key.

Question 35

How to install Intranet SSL certificate on SAP server?

Accepted Answer

Use SAPGENPSE cryptographic tool from SAP Marketplace. Download CA chain and follow SAP instructions for importing the PFX or PEM certificate.

Question 36

What are internal names?

Accepted Answer

Internal names include hosts, domains, and IPs not resolvable in global public DNS: e.g. server01, server.local, 10.98.0.1, localhost, etc.

Question 37

Why choose Multi-Domain Wildcard SSL Certificates?

Accepted Answer

Multi-Domain Wildcard SSL Certificates secure unlimited sub-domains and multiple host names, IP addresses, or URLs with one certificate.

Question 38

What is a Wildcard Certificate?

Accepted Answer

A wildcard certificate is a single certificate with a wildcard character (*) in the domain name field, securing multiple subdomains of the same base domain.

Question 39

What is a Multi-Domain or SAN certificate?

Accepted Answer

A Multi-Domain (SAN) certificate supports multiple domains, server names, and IPs. It provides flexibility and cost-savings for SSL management.

Question 40

Multi-Domain vs Wildcard SSL – What's the difference?

Accepted Answer

A wildcard certificate secures one domain and unlimited sub-domains. Multi-domain Wildcard SSL secures many domains, sub-domains, and IPs with one certificate.

Question 41

Can I have Wildcard SSL for IP Address?

Accepted Answer

Wildcard SSL is not possible for multiple IPs. Use Single Domain or Multi-Domain certificates to secure multiple IP addresses.

Question 42

How do we make payment?

Accepted Answer

Payments are accepted via PayPal, wire transfer, or via a reseller in your local currency.

Question 43

Are there any discounts available?

Accepted Answer

We offer a 30% discount on all standard SecureNT Intranet SSL Certificates to educational institutions and non-profit organizations. Eligible users should select 'Unable to make payment' and we will send you an online payment link.

Question 44

Do you issue Intranet SSL for internal names with regular TLDs?

Accepted Answer

Yes, we issue Intranet SSL to all internal names, including those using regular or country-code TLDs, unlike some private CAs.

Question 45

In what format do you issue the Intranet SSL certificates?

Accepted Answer

We issue SecureNT Intranet SSL certificates in PEM format (.cer). DER format is available for some certificates. PEM is most commonly used; DER is binary. Email support@intranetssl.net if you need a specific format.

Question 46

How to install Intranet SSL on Ubuntu Linux?

Accepted Answer

Copy server.pfx to Ubuntu, extract with OpenSSL to serverpfx.pem, move to /etc/ssl/certs, set correct permissions, and restart Apache.

Question 47

Quick guide on how to install Intranet SSL certificate on IIS?

Accepted Answer

Import the PFX file using MMC on Windows, then assign the certificate to your IIS site via Bindings in IIS Manager. Restart IIS for the changes to take effect.

Question 48

How to install Intranet SSL on XAMPP Server?

Accepted Answer

Unzip certificate files, place them in a secure folder, edit httpd-ssl.conf to reference the .cer files, and restart Apache server.

Question 49

How to install and configure SecureNT Intranet SSL certificate on your Apache server?

Accepted Answer

Copy server.cer, serverkey.cer, and CA-Bundle.cer files to your server. Update httpd.conf or httpd-ssl.conf to point to these files. Test and restart Apache.

Question 50

Is SecureNT Intranet SSL Domain Validated (DV) or Organization Validated (OV)?

Accepted Answer

SecureNT is a private CA. We verify the organization name from your public website, but strict DV/OV/EV requirements do not apply for internal certificates.

Question 51

What is Top Level Domain (TLD)?

Accepted Answer

A TLD is the last segment of a domain name after the final dot (e.g., .com, .net, .us).

Question 52

What is a Multi-Domain Wildcard SSL certificate?

Accepted Answer

A Multi-Domain Wildcard SSL certificate secures many domains, subdomains, and IPs with a single certificate using wildcards in the SAN extension.

Question 53

How to create CSR with SAN on Windows Data Center Edition?

Accepted Answer

Use a custom .inf file and the certreq utility in PowerShell to generate CSR with SAN fields.

Question 54

How to encrypt On-Premise SharePoint traffic with Intranet SSL?

Accepted Answer

Generate CSR with all SharePoint hostnames, request SecureNT certificate, install it in IIS, deploy SecureNT CA root, and configure SharePoint for HTTPS.

Question 55

What is a Private SSL Certificate?

Accepted Answer

A private SSL certificate provides public-key encryption for internal servers and applications, issued by a private CA like SecureNT, not trusted by the wider internet.

FAQs

What is client authentication in SSL/TLS ?

Tagged In

Why are public CAs stopping client authentication ?

Tagged In

Can public SSL certificates be used for client authentication after 2026 ?

Tagged In

Who should use SSL with client authentication ?

Tagged In