Certificate Management Service allows you to combine multiple certificates of the same brand and type into one certificate for issuance. The supported domain name types include single domain names, wildcard domain names, and IP addresses. For example, you can combine a multi-domain wildcard certificate and a hybrid certificate into one certificate for issuance. This simplifies certificate application and management.
Background information
A wildcard certificate is also called a wildcard domain certificate. If a wildcard domain name, such as *.aliyundoc.com, is bound to a certificate, the certificate is a wildcard certificate. A multi-domain wildcard certificate is a certificate to which multiple wildcard domain names are bound.
A hybrid certificate is a certificate to which single domain names, wildcard domain names, and IP addresses are bound. For example, if *.aliyundoc.com and demo.example.com are bound to a certificate, the certificate is a hybrid certificate.
Prerequisites
Multiple certificates of the same brand and type are purchased, and the certificates meet the following conditions:
The certificates are of the organization validated (OV) or extended validation (EV) type.
The certificates are in the Pending Application state.
The certificates are not in the Hosted state. The following figure shows a certificate that is in the Hosted state. You must cancel hosting for hosted certificates before you can combine the certificates. For more information, see Cancel hosting.
Procedure
After you combine certificates, you cannot claim refunds for the certificates. Proceed with caution.
Log on to the Certificate Management Service console.
On the Official Certificate tab, select Pending Application from the status drop-down list above the certificate list.
Find the certificate that you want to combine and click Combine Certificates in the Actions column.
In the Combine Certificates dialog box, select the certificates that you want to combine with the current certificate, read and select the confirmation information in the lower part, and then click Combine Certificates.
In the Combination Success message, click OK.
Find the combined certificate and click Apply for Certificate in the Actions column.
You can search for a combined certificate by using the name of the combined certificate. The name of a combined certificate starts with cas-merge.
In the Apply for Certificate panel, configure the Domains to Bind parameter and other required parameters as prompted. Then, click Submit.
The number of domain names that can be bound to the combined certificate is equal to the sum of the number of domain names that can be bound to each certificate before the certificates are combined.
For more information about the parameters that are required to apply for a certificate, see Required information for certificate application.
After the certificate application is submitted, you must cooperate with the certificate authority (CA) staff to complete the verification process. After the verification is successful, the CA issues the certificate to you. For more information about the required cooperative operations, see What to do next.
If your certificate application is approved, the certificate is issued. If your certificate application is rejected, contact your account manager.
Review duration
If the specified information is correct and you cooperate with the CA staff during the verification process, the CA completes the review and issuance within three to seven business days after you submit a certificate application.
After you submit a certificate application for an OV or EV certificate, the CA staff calls the mobile phone number that you specify or sends a verification email to the email address that you specify in the certificate application within one business day. The time varies based on the location of the CA. Statutory holidays are excluded. We recommend that you answer the phone call or confirm the email from the CA at the earliest opportunity. If you do not receive a phone call or email, contact your account manager.
What to do next
Install the issued certificate on web servers. The certificate is bound to multiple domain names and must be installed on different web servers that host the domain names. For more information about how to install a certificate, see Installation overview.