Intranet SSL provides a cost effective solution to secure internal servers, applications, and IP addresses that do not require public trust yet want to benefit from SSL encryption. With Intranet SSL, enterprises receive the same high level of security and certificate features of publicly trusted SSL certificates, but the certificates are issued using GlobalSign non-public CAs. Intranet SSL is available directly via TRUSTZONEs Certificate Management portal.
Beginning 1 November, 2015, the CA/Browser Forum will prohibit the use of internal server names and reserved IP addresses in publicly-trusted SSL certificates. This means if you normally receive SSL certificates from a public CA (such as GlobalSign), you won't be able to use their certificates for internal server names any more. Intranet SSL from TRUSTZONE allows enterprises to continue to issue SSL to internal server names and reserved IP addresses without the need to run your own CA or use self-signed certificates, because the certificates are issued using GlobalSign's non-public CAs.
WHY USE INTRANET SSL?
- Continue issuing SSL certificates containing internal server names and reserved IP addresses without the need to run your own in-house CA or use self-signed certificates.
- Secure internally used domain names and servers that do not require public trust.
- Issue certificates with options which would otherwise not be permitted under public hierarchies including the use of SHA1 and 4-5 year certificates.
- Utilize GlobalSign's WebTrust-certified infrastructure and management tools to discover, track, report, and manage all certificates across a dynamic server inventory.
HOW CAN INTRANET SSL BE USED?
IntranetSSL supports the issuance of SSL certificates with Internal Server Names and Reserved IP addresses in the CN and SAN values; furthermore, mix and match internal, FQDNs, sub-domains, wildcard, and Global IP addresses in one certificate using a single certificate under a non-public GlobalSign root.
- Internal Server Names
- Local Host Names (mysite.localhost)
- Reserved IP Address (192.168.0.0)
- Fully Qualified Domain Name (www.mysite.com)
- Sub-Domains (mail.mysite.com)
- Wildcard (*.mysite.com)
- Global IP Address (220.127.116.11)
COMPREHENSIVE CERTIFICATE MANAGEMENT
Intranet SSL certificates are issued directly from TRUSTZONEs Managed PKI Service providing enterprises the same robust certificate management lifecycle features as publicly trusted SSL certificates but issued using GlobalSign's non-public CAs. Manage your publicly trusted and privately trusted SSL certificates all within one single platform.
BENEFITS OF TRUSTZONES MANAGED PKI PLATFORM:
- Cloud-based certificate management platform reduces the effort, cost, and time associated with managing multiple SSL Certificates.
- Support for multiple entities under one account and delegated user administrator offer complete, centralized control of certificate needs across your entire organization.
- High capacity and highly available OCSP services
- Local scanning and discovery tools to discover and track your internal servers that need IntranetSSL certificates
- Fully automated issuance via our APIs
TRUSTZONE gives you all the tools, services, and SSL products to reduce risk, respond to threats and control SSL cost. Take control of your SSL management with TRUSTZONE today.
Contact us today to start securing your internal server names.