Features
With CCM, you can quickly get your SSL certificate and use them to keep your website more secure and trustworthy.
SSL Certificate Manager (SCM)
Feature |
Description |
|---|---|
SSL certificate application and purchase |
CCM provides four types of SSL certificates: Organization Validated (OV), OV Pro, Extended Validation (EV), and EV Pro. Currently, you can buy certificates issued by DigiCert. |
Centralized SSL certificate management |
CCM provides you with a one-stop management platform. You can upload certificates and private keys to our platform to centrally manage certificates, apply for review, view the domain names bound to certificates and certificate expiration time, change certificate names, and delete expired certificates, helping you improve certificate O&M efficiency. For details, see Uploading an External Certificate to CCM. |
One-click SSL certificate deployment |
You can deploy an SSL certificate to other Huawei Cloud products, such as ELB and WAF, in just a few clicks. |
SSL certificate revocation |
CCM follows the standard certificate revocation process. After the CA approves your revocation request, the SSL certificates will be revoked securely. |
Refund policies supported for SSL certificates |
SCM supports a seven-day unconditional full refund. For details, see Unsubscribing from an SSL Certificate. |
Renewing an SSL Certificate |
SSL certificates have a validity period. An SSL certificate issued by a CA is valid for one year. You need to renew the certificate before it expires. For details, see Renewing an SSL Certificate. |
Private Certificate Authority (PCA)
Feature |
Description |
|---|---|
Hosting CAs on Huawei Cloud |
PCA provides CAs and supports multiple key algorithms, including RSA_2048, RSA_4096, EC_P256, and EC_P384. It supports X.509 v3 certificates, as well as multi-level extension and multi-level authentication of CAs. It uses symmetric and asymmetric algorithms which are internationally used and comply with the PKI and CA international standards. |
Private certificate lifecycle management |
PCA allows you to apply for, download, and revoke private certificates. It can manage more than 10 million certificates. |
Key lifecycle management |
PCA uses Huawei Cloud Key Management Service (KMS) and Hardware Security Modules (HSMs) to protect CA keys. It supports the generation, update, deletion, and restoration of key pairs for software and hardware. |
Certificate Revocation List (CRL) management |
PCA periodically releases and updates a private certificate revocation list (CRL) to your OBS buckets for downloading. Applications, services, and devices can use CRLs to periodically check certificate status. |
Automated API integration |
PCA provides APIs to help you efficiently develop and deploy products. |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
