How it works

Supersonic speeds, A global node network. How BrandSSL delivers SSL at the edge.

On Demand SSL

BrandSSL uses a globally-distributed reverse proxy service to monitor unsecure traffic and issue SSL certificates at the edge. BrandSSL enables you to secure your customers custom or vanity domain names.

For example, a customer may want to use their custom domain name "www.customerdomain.com" to point to your application "app.saas.com".

Whenever insecure traffic is detected by BrandSSL on the network, BrandSSL begins the process of issuing an SSL certificate, it automatically routes the request to your specified application endpoint, seamlessly switching from http to https once the process is complete.

Don't take our word for it, point any domain name at "142.93.54.52" or "my.brandssl.io"

Get started
Picture showing BrandSSL securing an unsecured and unbranded domain name

Setting up BrandSSL

After creating an account on BrandSSL, the next step is the set up phase, this typically takes 5 minutes.

As part of the setup, you will be asked to provide your "application endpoint". This is where we would send your customer requests to for example "app.saas.com". You will also be asked to provide a CNAME record that your customers will point to for example "ssl.saas.com"

Once that is setup, we would supply you with an IP address for your end customer, so they can point to your application with an A record.

Image

Management

Once your setup is complete, you will be able to manage your SSL certificates, and customize your settings.

You will be able to change your application endpoint, customize default certificate authority and cloudflare settings if your provided CNAME record is proxied on Cloudflare. Multiple custom headers with dynamic values can also be appended to the traffic with URL rewrites.

Image

FAQ

Have a question not covered here? Reach out to sales@brandssl.io
All certificates are validated and issued within a few seconds
Yes, as long as the domain owner adds a DNS entry pointing to the service. Apex (root) and subdomains are secured automatically
Yes, as part of signing up we will ask you to point a CNAME at our service. e.g. app.yourdomain.com to a BrandSSL domain. The app.yourdomain.com is what your clients will use and add to their DNS
No – While BrandSSL is provisioning the service we’ll send the traffic as http and then transition to https once the SSL certificate is in place.
BrandSSL will automatically renew and manage the SSL certificates
Still have unanswered questions? Get in touch
Icon