InCommon Certificates
InCommon SSL (Web Server) Certificates allow Technical Support Contacts (TSCs) to generate an unlimited number of SSL certificates for their UT-owned websites and web servers.
The University has a site license with InCommon, which entitles us to create an unlimited number of certificates for no additional fee.
If the department is requesting an in-common certificate for a new domain, please direct the request to ISO for approval. The new domain will first have to be added to the incommon registry.
Unlimited number of certificates
No cost.
Requesting New Domains (top-level or otherwise)
Campus units wanting to add new domains to their InCommon portfolio can generally self-provision these as needed. The ISO will need to approve them as they are requested.
Top-level domains (e.g., securityresearchiskewl.org) will require a few extra steps. Once the ISO has submitted a request for this top-level domain, InCommon will reach out to the registered WHOIS contact with a request that they add a simple DNS entry to demonstrate they are in command of the name space. Once this has been done, InCommon will approve the domain and certificates can start to be issued for it.
Please feel free to send any questions you might have to security@utexas.edu.
A Secure Sockets Layer (SSL) certificate authenticates a website's identity and encrypts any information submitted through it. A website whose address begins with "https" has been secured using an SSL certificate.
Submit a Request using the button to the right to request an SSL certificate in a domain managed by ITS (.its.utexas.edu, .austin.utexas.edu).
Note: Please be sure to add a CSR to the request form before submitting it by:
- Please Zip the CSR file.
- Click the "paperclip" icon to open the Manage Attachments dialog.
- Click the Choose Files button in the dialog window to locate and add your Zipped CSR file.
- Click the Attach button in the dialog window to add the Zip to your request.
- Type: 2048-bit or 4096-bit SSL certificate
- Duration: 1 year or 398 days
- Quantity: Unlimited number of SSL certificates can be requested
The University has a site license with InCommon, which entitles us to create an unlimited number of certificates for no additional fee.
Departments with authorized TSCs
Customers should contact their DRAO-authorized TSC and provide the following information:
- A 2048-bit Certificate Signing Request (CSR)
- The fully-qualified domain name of the customer's server
- The web server software the customer is using (such as Apache)
If the customer is unsure if their TSC has the DRAO privilege, create a ticket and escalate to ISO to find out. We will need the customer's department.
Departments without authorized TSCs
Departments that need an SSL certificate for a departmental server and that do not have an authorized TSC, should authorize one of their TSCs with the Department Registration Authority Officer (DRAO) privilege. The TSC manager for a respective campus department can send a request for a DRAO account to security@utexas.edu. The request should have the subject "InCommon DRAO Request" and should include:
- The name of the department
- The Department Code for the department (see utdirect.utexas.edu/dept if unsure)
- The UT EID of the requesting TSC manager
- The name of the requesting TSC manager