SSL Certificates

The x509 [SSL] Certificate Service provides access to no-cost SSL/TLS certificates for UBC services, including wildcard, multi-domain, and single domain options. This service supports compliance with UBC Information Security Standards by ensuring encrypted communication and integrity across web-based systems. It also promotes the secure operation of UBC’s digital infrastructure in line with CA/Browser Forum best practices.

Certificates issued through this service have a maximum validity of one year. Renewal reminders, certificate signing request (CSR) assistance, and installation support are included in this service.  

Features and Benefits

 

FeatureBenefits
Multiple Certificate Types

Offers flexibility for different architectures.

  • Single Domain Certificates – Ideal for individual services or systems requiring dedicated certificates.
  • Multi-Domain Certificates [SAN] – Protect multiple domains and subdomains with a single certificate [eg: foo.dept.ubc.ca and bar.dept.ubc.ca can be on a single certificate].
  • Wildcard Certificates – Secure all subdomains under a single primary domain [eg: *.example.ubc.ca].  Some restrictions apply as wildcard certificates do raise security risk levels.
Multiple Signature AlgorithmsProvides better security and less processing overhead through the use of ECDSA certificates. RSA certificates are also offered where required for compatibility.
Installation SupportFacilitates easier installation of certificates with guidance and instruction from knowledgeable staff on proper certificate deployment on web servers, load balancers, and other services.
ISS Compliant
UBC ISS M7 § 2.6		Certificates obtained through this service meet all requirements as outlined in section 2.6 of UBC Information Security Standard M7 – Cryptographic Controls. They can be used to secure internal or external services.
CSR Generation AssistanceReduces friction by offering guidance and hands-on support in generating certificate signing requests tailored to your environment.
One-Year ValidityCertificates are issued with a one-year expiration period, adhering to § 6.3.2 of the CA/Browser Forum Baseline Requirements
Automated Renewal RemindersSignificantly reduces the risk of expired certificates remaining in production.  Multiple system-generated reminders are sent well in advance of expiration to facilitate timely renewal.
Service Availability

Certificate requests are reviewed and certificates are issued during regular business hours.

Certificate renewal notifications are automated and issued 24/7.

Support AvailabilityRegular business hours

Requirements and Eligibility

Audience

UBC system administrators, developers, application administrators, or Technical Owners may request this service.

Price

No cost

Learn More

Getting Started

Requests for SSL certificates can be submitted through the Cybersecurity Services section of the UBC Self Service Portal.  Once your request is submitted, a Cybersecurity Analyst will review it within one business day.  Certificates within the ubc.ca domain space are generally issued within one business day.  Certificates for non ubc.ca domains may take longer to issue as all public certificate authorities require that their domain validation processes are followed. 

Further Information

ResourceLogin RequiredAccessible FromNotes
Client DocumentationCWLAnywhere 

Get Help

For support or more information about this service, please submit a ticket under Submit a Support Request in the Cybersecurity Services section of the UBC Self Service Portal. Support is provided during regular business hours.

Page last updated on July 8, 2025

UBC Information Technology

6356 Agricultural Rd
Vancouver, BC Canada
V6T 1Z2

Related Sites

Need Help?

UBC Crest The official logo of the University of British Columbia. Urgent Message An exclamation mark in a speech bubble. Bluesky The logo for the Bluesky social media service. Bookmark A bookmark in a book. Browser A web browser window. Caret An arrowhead indicating direction. Arrow An arrow indicating direction. Arrow in Circle An arrow indicating direction. Arrow in Circle An arrow indicating direction. Time A clock. Chats Two speech clouds. E-commerce Cart A shopping cart. Facebook The logo for the Facebook social media service. Help A question mark in a circle. Home A house in silhouette. Information The letter 'i' in a circle. Instagram The logo for the Instagram social media service. Linkedin The logo for the LinkedIn social media service. Location Pin A map location pin. Mail An envelope. Menu Three horizontal lines indicating a menu. Minus A minus sign. Pencil A pencil indicating that this is editable. Telephone An antique telephone. Play A media play button. Plus A plus symbol indicating more or the ability to add. Search A magnifying glass. Settings A single gear. Arrow indicating share action A directional arrow. Speech Bubble A speech bubble. Star An outline of a star. Twitter / X The logo for the X (aka, Twitter) social media service. User A silhouette of a person. Vimeo The logo for the Vimeo video sharing service. Youtube The logo for the YouTube video sharing service.