Steps to Obtain or Renew SSL Certificates

Lori F 29 days ago

Each Certificate Authority (CA) has its own process for handling certificates, and this is something the organization's website administrator or IT team should manage.

To obtain a certificate, bundle, and private key from a Certificate Authority (CA), follow these steps:

1. Generate a Private Key and CSR: SugarCRM Support can assist with this step if needed.

2. Submit the CSR to a Certificate Authority (CA): Choose a CA (e.g., DigiCert, GoDaddy, Let’s Encrypt), provide them with the CSR, and complete the domain validation (via email, DNS, or file upload).

3. Download the Issued Certificate: Once approved, the CA provides:

The certificate file (your SSL/TLS certificate)
The CA bundle (intermediate/root certificates for the trust chain)

4. Provide SugarCRM Support with the certificate, bundle and private key files.

Keep your private key secure, as it is essential for SSL/TLS encryption. If lost, a new CSR must be generated for a reissued certificate.

Ben Hamilton 9 days ago

Do we expect any support for auto renewing Let's Encrypt certs to be in a future release of Sugar Market?

Ben Hamilton (more)
Michael North 8 days ago in reply to Ben Hamilton

Hi Ben Hamilton ,

That's a great question. Currently, we do this for our Market Pages when we created those for our customers. However, we do not currently offer that for Market emails. It is something we do want to do and have the idea for it marked as Status - Under Consideration by our product team here:

Idea: 91512 - Add the ability to offer self renewing SSL certificates for Email CNAMES

For quick reference, here is the definition we have for that Status:

Under Consideration: The Product Manager has reviewed the ticket and believes it is something that will be put in a future release but cannot say which one yet.

Hope this helps clarify!

Regards,

Michael North

Sr. Manager, Technical Support