spaces.at.internet2.edu has been upgraded to Confluence 6.15.10. If you have any questions and/or concerns, please contact us at techsupport@internet2.edu
Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Certificate Chain (Comodo's version of the chain):
    • USERTrust Secure [DER]
    • InCommon RSA Server CA [DER] [PEM]
    • End-Entity Certificate

    Certificate Revocation List:

    HTML
    http://crl.incommon-rsa.org/InCommonRSAServerCA.crl

    Online Certificate Status Protocol:

    HTML
    http://ocsp.incommon.org

...

Organizational Validation SSL/TLS Certificates

The intermediate CA known as the InCommon Server CA was deployed on February 1, 2011. Prior to that date, Organizational Validation (OV) SSL/TLS end-entity certificates were signed by the COMODO High Assurance Secure Server CA.

    Certificate Chain:

    HTML
    <br><span style="margin-left: 3em; line-height: 150%"><a href="https://support.comodo.com/index.php?_m=downloads&_a=viewdownload&downloaditemid=10&nav=0,1">AddTrust External CA Root</a> [<a href="https://www.incommon.org/cert/repository/AddTrustExternalCARoot.txt">Text</a>] [<a href="https://www.incommon.org/cert/repository/AddTrustExternalCARoot.pem">PEM</a>]</span>
    
    <br><span style="margin-left: 5em; line-height: 150%">InCommon Server CA [<a href="https://www.incommon.org/cert/repository/InCommonServerCA.txt">Text</a>] [<a href="https://www.incommon.org/cert/repository/InCommonServerCA.pem">PEM</a>]</span>
    
    <br><span style="margin-left: 7em; line-height: 150%">End-Entity Certificate</span>
    
  • Intermediate CA Bundle for OV SSL/TLS Certificates
  • Certification Practices Statement for OV SSL/TLS Certificates
  • Certificate

    Profile for OV SSL/TLS Certificates

    Certificate Revocation List:

    HTML
    http://crl.incommon-rsa.org/InCommonServerCAInCommonRSAServerCA.crl


  • Online Certificate Status Protocol:

    HTML
    http://ocsp.incommon-rsa.org



Tip

To test the freshness of the CRL, type the following command:

$ curl -s http://crl.incommon.org/InCommonServerCA.crl | openssl crl -inform DER -noout -lastupdate -nextupdate

...

  • Intermediate CA Bundle for EV SSL/TLS Certificates
  • Certification Practices Statement for EV SSL/TLS Certificates
  • Certificate Profile for EV SSL/TLS Certificates
  • Certificate Revocation List:

    HTML
    http://crl.comodoca.com

    /COMODOExtendedValidationSecureServerCA.crl

  • Online Certificate Status Protocol:

    HTML
    http://ocsp.comodoca.com


IGTF Server Certificates

InCommon offers IGTF server certificates for use by subscribers who are also active with the IGTF grid community. Note: Unless you are running a server as part of the IGTF grid (see the IGTF website) these certificates are NOT what you need. Request a normal InCommon server certificate instead.

The intermediate CA known as the InCommon IGTF Server CA was deployed on July 7, 2014.

...

Anchor
client-certs
client-certs

...