Customer Support > Install Root Certificate

AlphaSSL Certificates are trusted by all browsers and mobile devices. AlphaSSL also adopts a high security model which means that you need to install a single Intermediate Root Certificate on your web server. Your customers do not need to install anything as AlphaSSL is issued from a highly trusted and widely distributed trusted Root CA certificate. Please select your Webserver from the list below and follow the instructions.

Apache   IIS 4   IIS 5   IIS 6   Microsoft Exchange   Microsoft Outlook Web Access   c2Net Stronghold

Tomcat   cPanel   Plesk   IBM HTTP   Ensim   Cobalt

HSphere   Weblogic   F5 Fire   F5 BIG IP   Oracle Wallet Manager   Zeus

Download the Root Certificates here (Right Click Save-as):

Root CA
crt DER Format | .pem Format | .txt Format - this root CA certificate does not need need to be installed on your webserver

AlphaSSL Intermediate Root CA
Copy and Paste ALL characters from the appropriate box below into a text editor and Save to your server as per your Server installation instructions.

Be sure to include the -----BEGIN CERTIFICATE----- and -----END CERTIFICATE----- lines.

For Installation On or After May 30 2011

On May 30th, 2011 we will issue AlphaSSL Certificates from a new Intermediate CA Certificate. This is part of an overall program to renew our infrastructure periodically and ensure our cryptographic key material is fresh and we keep ahead of the curve for security best practices.

-----BEGIN CERTIFICATE----- MIIELzCCAxegAwIBAgILBAAAAAABL07hNwIwDQYJKoZIhvcNAQEFBQAwVzELMAkG A1UEBhMCQkUxGTAXBgNVBAoTEEdsb2JhbFNpZ24gbnYtc2ExEDAOBgNVBAsTB1Jv b3QgQ0ExGzAZBgNVBAMTEkdsb2JhbFNpZ24gUm9vdCBDQTAeFw0xMTA0MTMxMDAw MDBaFw0yMjA0MTMxMDAwMDBaMC4xETAPBgNVBAoTCEFscGhhU1NMMRkwFwYDVQQD ExBBbHBoYVNTTCBDQSAtIEcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/BliN8b3caChy/JC7pUxmM/RnWsSxQfmHKLHBD/CalSbi9l32WEP1+Bstjx T9fwWrvJr9Ax3SZGKpme2KmjtrgHxMlx95WE79LqH1Sg5b7kQSFWMRBkfR5jjpxx XDygLt5n3MiaIPB1yLC2J4Hrlw3uIkWlwi80J+zgWRJRsx4F5Tgg0mlZelkXvhpL OQgSeTObZGj+WIHdiAxqulm0ryRPYeDK/Bda0jxyq6dMt7nqLeP0P5miTcgdWPh/ UzWO1yKIt2F2CBMTaWawV1kTMQpwgiuT1/biQBXQHQFyxxNYalrsGYkWPODIjYYq +jfwNTLd7OX+gI73BWe0i0J1NQIDAQABo4IBIzCCAR8wDgYDVR0PAQH/BAQDAgEG MBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBTqGVXwDg0yxh90M7eOZhpM EjEeMEUGA1UdIAQ+MDwwOgYEVR0gADAyMDAGCCsGAQUFBwIBFiRodHRwczovL3d3 dy5hbHBoYXNzbC5jb20vcmVwb3NpdG9yeS8wMwYDVR0fBCwwKjAooCagJIYiaHR0 cDovL2NybC5nbG9iYWxzaWduLm5ldC9yb290LmNybDA9BggrBgEFBQcBAQQxMC8w LQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLmdsb2JhbHNpZ24uY29tL3Jvb3RyMTAf BgNVHSMEGDAWgBRge2YaRQ2XyolQL30EzTSo//z9SzANBgkqhkiG9w0BAQUFAAOC AQEABjBCm89JAn6J6fWDWj0C87yyRt5KUO65mpBz2qBcJsqCrA6ts5T6KC6y5kk/ UHcOlS9o82U8nxTyaGCStvwEDfakGKFpYA3jnWhbvJ4LOFmNIdoj+pmKCbkfpy61 VWxH50Hs5uJ/r1VEOeCsdO5l0/qrUUgw8T53be3kD0CY7kd/jbZYJ82Sb2AjzAKb WSh4olGd0Eqc5ZNemI/L7z/K/uCvpMlbbkBYpZItvV1lVcW/fARB2aS1gOmUYAIQ OGoICNdTHC2Tr8kTe9RsxDrE+4CsuzpOVHrNTrM+7fH8EU6f9fMUvLmxMc72qi+l +MPpZqmyIJ3E+LgDYqeF0RhjWw== -----END CERTIFICATE-----

For Installation Prior to May 30 2011

On May 30th, 2011 we will issue AlphaSSL Certificates from a new Intermediate CA Certificate. This is part of an overall program to renew our infrastructure periodically and ensure our cryptographic key material is fresh and we keep ahead of the curve for security best practices.

-----BEGIN CERTIFICATE----- MIIEDjCCAvagAwIBAgILBAAAAAABHkSl82UwDQYJKoZIhvcNAQEFBQAwVzELMAkG A1UEBhMCQkUxGTAXBgNVBAoTEEdsb2JhbFNpZ24gbnYtc2ExEDAOBgNVBAsTB1Jv b3QgQ0ExGzAZBgNVBAMTEkdsb2JhbFNpZ24gUm9vdCBDQTAeFw0wNzA0MTExMjAw MDBaFw0xNzA0MTExMjAwMDBaMDYxETAPBgNVBAsTCEFscGhhIENBMQ4wDAYDVQQK EwVBbHBoYTERMA8GA1UEAxMIQWxwaGEgQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7Mi4rE/30JIpb+mvNq5yytguJauYfQc6KJEL/XK9fkD31kLlz x3C0wso41q0GFRqAOB15K6VDIOe5+o0GIlcNZLXRTe0kOEm0agfUM9s7djg/r3dp 73oTMyl7QISQNXhajyMpV2+wV6s3mZQoz9PHV6WWsYqBLnOAvWjsGxEXih7YlHdL dpHqtMwWMwNiuAYaZWm+rNaXG6exJ6HAJVIvSbzaBAa6uLWmqOHLJYe2KNSJazQB dxq27N5Z3Jm7XdyPhMK5YgMTYwIJnuEJyL7xGHlxbcnQtUKXyvg0TZKHwDn6XCE9 lFIEWoOp1KuDBSjYFyMkg2SbIS/4Oyt4ZIeTAgMBAAGjgfswgfgwDgYDVR0PAQH/ BAQDAgEGMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFAop+q2vTf39XX12 JoerqlqqdCIVMEoGA1UdIARDMEEwPwYKKwYBBAGgMgEKCjAxMC8GCCsGAQUFBwIB FiNodHRwOi8vd3d3LmFscGhhc3NsLmNvbS9yZXBvc2l0b3J5LzAzBgNVHR8ELDAq MCigJqAkhiJodHRwOi8vY3JsLmdsb2JhbHNpZ24ubmV0L3Jvb3QuY3JsMBEGCWCG SAGG+EIBAQQEAwICBDAfBgNVHSMEGDAWgBRge2YaRQ2XyolQL30EzTSo//z9SzAN BgkqhkiG9w0BAQUFAAOCAQEArRW+NY5aM4tzqNt0v7lOaL6tyiRbYlcOKWW3wbIa 8+vMHrZKs8OixuG2yNEupd6w1aXCdH0RhAHjE9jDJA7I8MePOKBoAyUEjydW/VYV cnqhQ/lFzM/P260IDEtpIdDDSqGDToVq4eH/2J82GG6QGc9BEsZWwR2324O+yof4 sz9xD6vFRgSGa11L3Sejd2QWJ5GoMFQuDGUNJoHb55ogkC8Rxxt8JkpJshJcD2tt Wkpkm21GAy9XKnfAPPQ3iVvDzDSg6HRV7gqnz8jAgCRx3x0L08FuNg52OeNp3k5L 5qOZnsvMJIw101tpj5D24Zxnv5SjxxrgX6f4iE16EYABzw== -----END CERTIFICATE-----

What are Intermediate Root CA certificates?
All customers installing an AlphaSSL Certificate will need to install the Alpha CA Intermediate root CA onto their web servers.  The installation needs to only be conducted once.  Once installed, all browsers, applications and mobiles will trust AlphaSSL Certificates transparently. The Intermediate root CA certificate needs only be installed on the web server and does NOT need to be installed by visitors to your web site.

Why does AlphaSSL use an Intermediate root CA certificate?
AlphaSSL has always adopted a high security model when issuing digital certificates.  We use a trust chain that ensures that the primary root CA used to create the Alpha CA Intermediate Root CA (i.e. the GlobalSign Root CA certificate that is pre-installed with all browsers, applications and mobiles) is “offline” and kept in a highly secure environment with stringently limited access.  This means the root CA is not used to directly sign end entity SSL Certificates, as such AlphaSSL employs a best practices approach for it Public Key Infrastructure therefore protecting against the major effects of a “key compromise”.  For example, a key compromise of the primary Root CA would render the root and all certificates issued by the root untrustworthy, and because we keep our root offline this (somewhat unlikely event) is significantly less likely to happen. 

The use of Intermediate root CAs is utilized by all major Certification Authorities because of the extra security level they provide.