Knowledge Base

Check for answers to your questions by searching by keywords, or check categories below.

SSL Panel workflow explanation

Question

How does SSL Panel work? What stages does order pass?

Answer

1. Once Order is purchased from Openprovider certificate has status "Open"

You can point the cursor to the status and you will see the date when it got this status.

2. If it is OV/EV certificate with .nl common name and Dutch company then prevalidation is performed.
If it fails certificate stays in the status "Open" with marked arrow "Requested".

The results of the prevalidation are displayed below.

3. When request is sent to the Certification Authority certificate is moved to the status "Requested" with marked arrow "Requested". You can also check when it was requested:

4. If the customer has requested Cancellation from this status first it stays in the same "Requested" status with marked "Cancel" arrow. That means we have sent the cancel request to the CA and now we are waiting when they will cancel certificate to get "Cancel" status from CA.
We can't influence process: from Comodo, we will get webhook message once it is done.
This status corresponds to the "REJ" (Rejected) status in Openprovider.

5. Once we get from CA that certificate is canceled it is moved to the status "Rejected" (corresponds to the "FAI" Failed status in Openprovider). Order set to the "Closed" status and then actions are available:

6. When certificate is activated (we get status from CA) it is moved to the status "Active":

Check "Activation" and "Expiration" dates:

7. For the "Cancellation" from "Active" status the same logic is applied as for cancellation from "Requested" status - we send cancel request to the CA and mark arrow "Cancel" on the workflow
(in Openprovider it corresponds to "REJ" - Rejected status):

8. Once certificate is canceled in CA it is moved to the "Revoked" status ("FAI" - Failed, in Openprovider) :

9. Once a certificate expires it is moved to the "Expired" status:

10. There is second certificate created in the chain (in general there is "Current" Requested certificate and previous "Active" certificate):

NOTE 1
If the customer has requested "Reissue" more than one time there will be more certificates in the chain.

NOTE 2
If the customer has requested "Cancel" for the Certificate with requested "Reissue" it is applied to all certificates in the chain.

11. How it looks like when "Renew" is requested? There is also new certificate in chain created, but the difference from "Reissue" is that initial certificate is in status "Renewed"
(it is displayed as "Expired" but not quite correct because the initial certificate is not expired yet):

12. "Replaced" - a certificate that has been replaced.
"Replaced" certificate means the certificate was replaced due to an error, missing domain or certificate not installing. The main action is to revoke the replacement certificate. The certificate replaced is still active unless it states "Revoked".
"Replaced" certificates can be reissued manually (contact us).
We will change their status into "Active" to make you be able to perform reissue.

replaced.png

Was this article helpful?
0 out of 0 found this helpful