From August 19th 2020, SECTIGO issues SSL certificates with a maximum lifetime of 398 days (13 months) as specified by CA/Browser consortium. SSL certificates with a longer lifetime must be re-issued annually (free of charge). You'll receive reminders via e-mail. SSL certificates issued before August 19th 2020 remain valid until their planned expiry date. Code Signing & S/MIME certificates are not affected and remain valid until their planned expiry date.

What is PRE-SIGN FAILED? What is a CAA record? - DNS Certification Authority Authorization (CAA) Resource Record

The Certification Authority Authorization (CAA) DNS Resource Record allows a DNS domain name holder to specify one or more Certification Authorities (CAs) authorized to issue certificates for that domain.

CAA Resource Records allow a public Certification Authority to implement additional controls to reduce the risk of unintended certificate mis-issue.

This document defines the syntax of the CAA record and rules for processing CAA records by certificate issuers.

Show details in RFC 6844:
https://tools.ietf.org/html/rfc6844


Was this answer helpful?

 Print this Article

Also Read

How to create a certificate signing request (CSR) in Microsoft Exchange 2013 ?

Our partner DIGICERT (owner of RapidSSL) has a tutorial that's including screenshots. You can...

Can i obtain a SSL certificate for a server with dynamic IP / DNS / DynDNS address? What about synology.me, myqnapcloud.com, dyndns.org subdomains?

Yes, it is possible to obtain a SSL certificate for dynamic IP based servers. For mail...

Plesk DNS CNAME Validation for PositiveSSL / EssentialSSL / InstantSSL / Sectigo EV ...

The following Screenshot shows how the CNAME DNS entries "CNAME Alias" and "CNAME Point To" need...

Decrypting SSL traffic with tshark (private key required)

Sample: #!/bin/bash tshark -f "tcp port 80" -Y 'http.request || http.response' #OR (for...

Does InterSSL deliver SSL certificates for ECC (Elliptic Curve Cryptography) and ECDSA ?

Yes, all SSL certificates from COMODO also support ECC (Elliptic Curve Cryptography), to be more...