Help Center/ Cloud Certificate Manager/ FAQs/ FAQs/ SSL Certificate Application and Purchase/ SSL Certificate Selection/ How Do I Apply for an SSL Certificate That Uses SM Series Cryptographic Algorithms?
Updated on 2023-12-20 GMT+08:00

How Do I Apply for an SSL Certificate That Uses SM Series Cryptographic Algorithms?

SCM provides OV SM2 SSL certificates issued by CFCA, TrustAsia, or vTrus.

Prerequisites

The account for purchasing a certificate has the SCM Administrator/SCM FullAccess and BSS Administrator permissions.

Procedure

  1. Log in to the management console.
  2. On the certificate purchase page, set the parameters for purchasing an SM2 SSL certificate. Table 1 describes the parameters.

    Table 1 Purchasing an SM2 SSL Certificate

    Parameter

    Description

    Service Type

    Select SSL certificate - domain name.

    Domain Type

    Type of the domain name to be associated with the SSL certificate. The options are as follows:

    • Single domain: An SSL certificate can be used for only one domain name, such as example.com.
    • Multi-domain: An SSL certificate can be used for a maximum of 250 domain names.
    • Wildcard: An SSL certificate can be used for only one wildcard domain name. For example, *.example.com (including a.example.com, b.example.com, ..., but excluding a.a.example.com).

    Domain Quantity

    If the Domain Type value is Single domain or Wildcard, you can only associate one domain name with a certificate.

    Certificate Type

    Select the OV certificate.

    Certificate Authority

    CAs that support the SM2 algorithm vary depending on the selected domain name type.

    • CAs supported for single-domain certificates:
      • CFCA
      • TrustAsia
      • vTrus
    • CAs supported for multi-domain certificates:
      • CFCA
      • vTrus
    • CAs supported for wildcard-domain certificates:
      • CFCA
      • TrustAsia
      • vTrus

    Validity Period

    Select the certificate validity.

    • 1 year: A one-year SSL certificate.
    • 2 years: Two one-year SSL certificates. CCM uses the certificate information of the first certificate to automatically apply the second certificate 30 days before the first one expires.
    • 3 years: Three one-year SSL certificates. CCM will apply for the next certificate thirty days before the previous one expires using the information you provide when you apply for your first certificate.

    Quantity

    Select the number of certificates you want to purchase. You can purchase up to 100 certificate once.

  3. Confirm the product details and click Next.

    If you have any questions about the pricing, click Pricing details in the lower left corner.

  4. Confirm the order information and agree to the CCM statement by selecting I have read and agree to the Cloud Certificate Manager Statement. Click Pay.
  5. On the displayed page, select a payment method.

    After the payment is complete, go back to the certificate list to view the purchased certificate.

  6. Submit the certificate application. For details, see .

    The key algorithm must be set to SM2.

  7. Verify the domain name ownership. For details, see .
  8. Verify an organization. For details, see .
  9. Issue the certificate.

    It will take some time for the CA to review your information. The CA will issue the certificate only after they validate your information.