Digicert products including RapidSSL, Geotrust and Thawte now support the ability to select the appropriate Intermediate Certificate Authority. This is supported by both the API and the order management page.

For most customers the Default option will suffice if the highest compatibility is required. However we have some customers who require support for older ICA and more modern ICA.

API Updates

When using the API we recommend using the productfields API call to obtain a list of the supported ICA for the specific product. The required ICA can then be specified using the selected_ca_cert option under the place call. If no ICA is provided as part of the API call then the default for that product will be used which is suitable for the majority of installations.

As a result of this update the hashing_algorithm API parameter will be ignored. This will be used in a future update to allow the selection of supported hashes depending on the product.

It is now possible to copy the 2FA link from the account page rather than needing to scan the QR code. This is useful for customers using systems such as 1Password on a computer rather than a mobile device.

It is now possible to view Sectigo orders on the Sectigo order system. We have added this capability to make it easier for customers with OV and EV orders to upload the requested documentation. It is also useful to check the current status of the order if there is ever a delay in Severtastic updating.

This can also be accessed directly by linking to https://app.manage.cm/orders/{{order_token}}/sectigo

We have set-up a new status page for customers. This not only provides the status of our own internal services but also of external providers that are embeded in our products.

The status page is available at status.servertastic.com

Following user requests we have added a new API parameter exclude_addon to the place request.

This only applies to non multi-domain orders.

Behaviour when exclude_addon=0 or is not set.

If your CSR domain does not start with www then the system will automatically create a no cost addon SAN to include the www.

If your CSR domain starts with www then the system will automatically create a no cost addon SAN for the base domain.

Behaviour when exclude_addon=1 is set

The CSR domain will be the only domain included in the order.

DigiCert has announced the removal of 4, 5 and 6 year certificate plans. These have been removed for retail customers immediately. They will become unavailable for resellers after 06 OCTOBER 2023.

Any orders generated for 4, 5 or 6 year certificate plans not processed by 31 OCTOBER 2023 will not be fulfilled and should be cancelled for a refund.

Any existing 4, 5 or 6 year certificate plans issued before 31 OCTOBER 2023 will remain valid and can be reissued an unlimited number of times during the plan term.

The following products are affected by this change.

• RapidSSL
• QuickSSL Premium
• True BusinessID
• Secure Site
• Secure Site Pro

The DigiCert system has been unreliable at present in obtaining the DCV validation string for FILE and DNS entries. We have deployed an update in an attempt to retry to obtain this information where the original call has failed. We will continue to monitor.

From 31 September 2023 api2.servertastic.com will issue a 410 - Gone result. Please ensure you update your resources to utilise api.servertastic.com/v2/

The new Feature Request and Feedback system is live for customers. This will be used to show what we are currently working on, requests made by customers and the current product roadmap. Take a look and make any requests https://product.servertastic.com

Added additional validation to the CSR key size checking as part of the order process to reduce errors when submitting orders. Supported Key sizes are RSA2048, RSA3072, RSA4096, p-256, p-384