• OAAIS Home
• News
• Service Catalog

Web Server Certificate Request

Installing a server certificate does not mean that your server is secure. It allows the client to establish a secure connection to the server. Therefore, before contacting OAAIS Enterprise Information Security (EIS) to request a web server certificate you will need to harden your server as outlined in the documents on the security website.

To request a web server certificate, follow these instructions:

1. Once your server has been hardened, contact OAAIS Enterprise Information Security (EIS) to request a server certificate.
2. An email form will be sent to you requesting information about the server, contact information, and the account number for recharging.
3. Complete the form and email to security@ucsf.edu to be processed by OAAIS EIS.
4. OAAIS EIS will run an ISS scan on the IP address to assess the vulnerability of the server.
5. When the scan is complete, OAAIS EIS will contact you to review the results of the scan and provide you with the scan report if any vulnerabilities are discovered.
6. Any vulnerabilities discovered must be resolved.
7. You will receive an email with the UCSF/Entrust URL to complete the server certificate request.
8. Once the request has been submitted, using the UCSF/Entrust URL, you should receive your certificate by email from Entrust.
9. You will then need to install the certificate on your server.

Certificates are good for one (1) year. You will receive an email notification from Entrust when your certificate is due to expire. The process for obtaining a renewal certificate is the same as above. (See: Process for Web Server Certificates that are Expiring.)

Please tell us what you think of our website

The University of California, San Francisco, CA 94143, 415/476-9000
Copyright © 2008, The Regents of the University of California.