Topics Map > Getting Started
Topics Map > Production-ready

LCS - Request and setup a SSL certificate

Enable SSL on a custom hostname for a Betty Blocks application

Generate a Private Key and CSR

How to create a CSR (https://kb.wisc.edu/18911#req6)

Submitting the Certificate request 

Submitting a request for a new certificate (https://servercertificates.wisc.edu/#!/make-requests).

  1. Select Other for server type.
  2. Select 1 year as the term.
  3. Then paste the entire contents of the .csr file into the CSR field. 

options for SSL Certificate request

 

Once the Certificate request has been approved an email with a number of certificate options will arrive. The certificate to download is the Certificate only, PEM encoded. 

Providing Betty Blocks with your SSL certificate and private key

To complete the process of installing the SSL certificate a support ticket with Betty Blocks needs created. The LCS Service Team will enter this ticket for you.  Send an email to serviceteamforlcs@office365.wisc.edu with the following information:

  • Application identifier
  • Name of the application
  • External domain URL
  • The SSL certificate (.crt) in a zip file

Once the service team has received the request and entered the ticket with Betty Blocks support. a member of the team will reach out with the BB ticket number TECHSUP-#### that you can reference in a separate email to support:

  • Send the private key (.key in a zip file) that was used to generate the certificates’ CSR
  • Send to support@bettyblocks.com
  • Please, do not send the service team the private key information.

Additional information 

Please, keep the following in mind:  

  • Betty Blocks will only accept SSL certificates with a duration of 12 months or longer. Anything shorter than 12 months will be rejected.
  • Betty blocks requires a minimum of 14 days to complete the initial certification process and prior to the expiration date of your website's certificate for a renewal.
  • Put a reminder on a calendar to renew the certificate 30 day before expiration to ensure the process has time to complete.
  • No notifications from Betty Blocks will occur to remind you the certificate is expiring. Notifications will instead be sent by InCommon to the email address that was provided when the certificate was created 30 days before expiration.

Using wildcard certificates with Betty Blocks

Initial setup

Wildcard certificates are supported by Betty Blocks. To use a wildcard certificate with an application follow the same steps that would be followed for a standard new certificate setup.

Renewals

When renewing a wildcard certificate that used by more than one application. Follow the same steps as in the initial enrollment but include the app identifiers and URLs for each application that the certificate is being used by.


Keywords:
https,crt, shibboleth 
Doc ID:
132923
Owned by:
Joel H. in Low Code Solutions
Created:
2023-11-20
Updated:
2024-06-12
Sites:
DoIT Enterprise Business Systems - Low Code Solutions