Web server certificate transition

May 18, 2010

The CMU Certificate Authority server certificate expires at the end of May, 2010, which will invalidate all certificates signed by the CMU and SCS Certificate Authorities. To replace these certificates, CMU recently acquired a site license for commercial certificates issued by Comodo. Unlike certificates signed by the CMU CA, Comodo certificates are trusted by all widely-used browsers and there is no need to install special CMU certificates when connecting to web servers that use Comodo certs.

Under the CMU site license, SCS Facilities issues and renews Comodo certificates for SCS hosts, and all certificate-related requests should continue to be sent to certificates@cs.cmu.edu. There is no charge for Comodo certificates. Details about how to request a Comodo certificate can be found at:

http://www.cs.cmu.edu/~help/web_publishing/ssl_certs.html

If you are the administrator for a Web server that currently uses a certificate signed by the SCS Certificate Authority, you should have already received e-mail with instructions on how to obtain a new Comodo certificate for your server.

Please contact help@cs.cmu.edu or call the SCS Help Desk (x8-4231) if you have questions about this transition or problems with upgrading a certificate.