How to Enable Custom SSL Certificate Uploads for Your SaaS Users image
General
November 23, 2024

How to Enable Custom SSL Certificate Uploads for Your SaaS Users

BrandSSL
BrandSSL

Custom SSL certificate support is a crucial feature for SaaS platforms targeting enterprise customers. Many growing SaaS companies discover this need when moving upmarket, as enterprise clients often require using their own SSL certificates for security compliance and infrastructure control.

Let's dive into implementing this essential feature for your SaaS platform.


Understanding Enterprise SSL Certificate Requirements

Enterprise customers typically need custom certificate support to:

  • Meet specific security compliance requirements
  • Maintain control over certificate management
  • Use certificates from their approved vendors
  • Keep consistent security infrastructure across all services


The challenge? Building custom certificate infrastructure takes significant development resources. Most SaaS engineering teams face several hurdles:

  • Creating secure upload systems
  • Implementing certificate validation
  • Managing renewal processes
  • Handling various edge cases
  • Writing technical documentation
  • Supporting different certificate formats


A Streamlined Solution with BrandSSL

BrandSSL offers a plug-and-play solution for custom certificate management. Our platform handles the entire certificate lifecycle, removing the complexity from your development roadmap.

We provide two straightforward approaches for certificate management:

  • A clean dashboard interface for manual handling
  • A robust API for automated management
     

The platform takes care of:

  • Certificate validation
  • Chain management
  • Expiration monitoring
  • Private key security
  • Automated provisioning


Implementation Steps

Adding custom certificate support through BrandSSL requires minimal setup time. Here's the process:

Start with account creation at brandssl.io/register and configure your application endpoint. You can then manage certificates through:

The Dashboard:

  1. Access Domains section
  2. Choose target domain
  3. Select "Add certificate"
  4. Upload certificate and private key
  5. Submit for processing


The API (adding a certificate):

curl -X POST -H "Content-type: application/json" -d '{ "display_name": "optional name", "certificate": "-----BEGIN CERTIFICATE-----\n...\n-----END CERTIFICATE-----", "private_key": "-----BEGIN PRIVATE KEY-----\n...\n-----END PRIVATE KEY-----", "domain": "example.com" }' 'https://www.brandssl.io/api/{API_KEY}/certificate/add' 


Important Certificate Requirements:

  • PEM format required
  • Domain names must match
  • Minimum 14-day validity period
  • Not Have a Key File Password: The private key used with your certificate should not have a password. BrandSSL cannot parse your certificate if the key is password-protected.


We've detailed the steps to add a custom certificate via the API in our API Documentation.


Technical Benefits

Implementing custom certificate support through BrandSSL offers several advantages:

  • Quick deployment of enterprise-grade certificate management
  • Zero infrastructure maintenance overhead
  • Professional certificate handling and validation
  • Scalable certificate management system
  • Simple API integration options


Getting Started

Ready to add custom certificate support to your SaaS platform? Visit brandssl.io to create an account and begin implementation.

Test our service by pointing any domain at my.brandssl.io, and an SSL certificate will be provided.


Technical Support

Our engineering team provides implementation support through hello@brandssl.io

Custom certificate support shouldn't require months of development work. Implement BrandSSL today and offer this essential enterprise feature to your customers.



Delight Your Customers: Offer Secured Custom Domains





Icon