skip to primary navigationskip to content
 

What certificates are available?

University Information Services (UIS) supplies certificates issued by QuoVadis Online Security Limited via the Certificate Service operated by Jisc.

What is available:

  • Standard, 'Organisation Validated' (OV) certificates. These are suitable for most applications requiring certificates within the University and are valid for 2 years. The charge for these certificates varies according to the number of domains – please see Application process and charges for details.

  • 'Extended Validation' (EV) certificates. These are subject to more vigorous checks before issue, which may give visitors a higher level of assurance when visiting a site. Most browsers indicate a site using an EV certificate by turning the URL bar green. These certificates are valid for 2 years. Their use should be restricted to 'high profile' sites where the higher level of assurance will be relevant to visitors. The charge for these certificates varies according to the number of domains – please see Application process and charges for details.

  • Wildcard certificates. These are valid for all host names directly inside a single sub-domain – so, for example, for all possible host names directly in '.department.cam.ac.uk'. These can be convenient, especially when the names of the hosts to be protected are not known in advance, but using them securely on more than one server is difficult, so they must be used with care. Wildcard certificates are valid for 2 years and a charge of £150 (plus VAT at the standard rate for purchases by Colleges and other non-University organisations) is made for them.

If a mistake is made when a certificate is requested it is sometimes possible for the University to obtain a replacement at no charge. If you need to re-request a certificate please contact  for advice before simply requesting an additional certificate in the normal way.

Personal and Code Signing certificates are not currently available under this scheme.

All certificates include the University's name and (optionally) the name of the University unit (Department, College, etc.) using them. They also support the 'Subject Alternate Name' (SAN) certificate extension, which allows a single certificate to list multiple server names and so to be valid for multiple servers or virtual hosts (or for one wildcard domain and additional servers or virtual hosts in the case of wildcard certificates). Certificates issued under this scheme contain signatures that use the SHA-2 hash algorithm. All certificates can normally be issued quickly – typically within a working day.

Where there is a charge for a certificate, requests will only be processed once a valid purchase order (or other payment authorisation for non-University institutions that don't issue purchase orders) is received by UIS.

At one time some certificates issued by UIS could not be used to secure financial transactions, but this restriction was removed during 2012.

Last updated: April 2019

UIS Service Status

Phone padded  Service status line: (01223) 463085
Website  Sign up for SMS/email status alerts
Website  Read major IT incident reports

UIS bITe-size bulletin


A regular newsletter aimed at the University's IT community, highlighting service and project news from UIS.

Sign up >  |  Back issues

RSS Feed Latest news

Bug in iOS 14 and iPadOS 14 that affects new VPN configurations

Sep 16, 2020

The latest release of Apple's iPad and iPhone operating systems, due out today, has a bug that requires users to follow a different process when setting up a new VPN configuration. It doesn’t affect existing configurations.

AirGroup functionality expanded on University Wireless Service

Sep 15, 2020

We’ve expanded AirGroup functionality on the University Wireless Service. AirGroup enables personal devices to discover and communicate with each other via Wi-Fi – for example, it allows you to use Airplay from your mobile devices to your Apple TV.

View all news