Certificate Requests
Procedures for obtaining digital certificates for individuals and servers.
Servers
Server certificates are the most common type of certificate, typically used for secure (https://) websites. The information security office reviews certificate requests before approval.
Request a InCommon server certificate
- Unlimited, globally-recognized SSL Certificates are provided to CSU San Bernardino through the InCommon Certification Authority.
- For technical details on the steps necessary to create a CSR, visit Sectigo's CSR generation knowledgebase.
- If you have questions, please contact iset-ops@csusb.edu.
Individuals
Certificates for individuals are available via a self-service page. If you encounter any issues when using self-service, please contact iset-ops@csusb.edu for assistance.
InCommon Personal Certificates Request Page
- Supports S/MIME email signing and encryption
- Supports certificate authentication to websites and VPNs
InCommon Client Certificate Chain
Some programs and devices, like the iPad, require installing each of the following certificates before an InCommon client certificate can be used for authentication. (NOTE: These are not the same certs used for server certificate chains.)
- AAA Certificate Services (root - expires 12/31/2028)
- USERTrust RSA CA (intermediate - expires 12/31/2028)
- InCommon RSA Standard Assurance Client CA 2 (intermediate - expires 11/15/2032)
Remove the "AddTrust External CA Root" (expired 5/30/2020) or "InCommon RSA Standard Assurance Client CA" (expired 9/18/2024) certificates if you see either of them in your certificate store.