Getting Started with Common Practices

This topic introduces some common practices along with explicit operation guidelines to help you quickly start with Cloud Certificate Manager (CCM).

Best Practices	Description
Resolving a DNS Record on Huawei Cloud or Alibaba Cloud	After an SSL certificate application is submitted to the CA, domain name verification is required. This section walks you through how to verify domain name ownership on Huawei Cloud and Alibaba Cloud.
Enabling HTTPS Encryption for Websites	This section describes the process of purchasing and installing an SSL certificate on a server, helping you convert an HTTP website into an HTTPS-encrypted one with ease.
Quick Deployment of an SSL Certificate to the Cloud	This section walks you through how to use CCM to quickly deploy SSL certificates you obtain through CCM or a third party platform on your Huawei Cloud CDN, WAF, or ELB instances, converting your services from HTTP to HTTPS and improving data access security.
Using FunctionGraph to Automatically Obtain and Update ECS Server Certificates	This section describes how to use FunctionGraph to automatically obtain and update an ECS server certificate. With this method, there is no need to manually update ECS server certificates after certificate renewals.

Best Practices	Description
Best Practices for Private Certificate Management	This section provides guidelines for private certificate lifecycle management and rotation and describes private certificate statuses.
Best Practices for Private CA Management	This section describes how to design the hierarchy of private CAs and how to manage private CAs throughout their lifecycle, including management of certificate revocation lists (CRLs) and rotation of private CAs. This section also describes different states of private CAs.
Example PCA Code	This section provides example code for managing private CAs and private certificates, including creating, deleting, disabling, and enabling CAs, and applying for, deleting, exporting, and revoking certificates.
Building an Internal Identity Authentication System	This section walks you through how to use CCM to establish a CA hierarchy for your organization so that you can issue and manage self-signed private certificates internally.