Server Certificates ( SSL/TLS )
Last updated:
- InCommon Certificate Service Vendor Transition (Sectigo → CERTInext)
2. Shorter certificate lifespans are coming as theCA/Browser Forum has approved a phased reduction in maximum certificate validity.
For those manually renewing certificates, we highly recommend Automated Certificate Management Environment (ACME) protocol.
- SSL/TLS Server Certificates – Let’s Encrypt Certificate Automation
- SSL/TLS Certificate – Automatically Issue and Renew InCommon with ACME
- March 15, 2026: The maximum lifespan for certificates was reduced to 200 days.
- December 31, 2026: Reduction to 90 days, as a result of CertiNext’s implementation of Google Chrome’s policies around intermediate Certificate Authorities.
- March 15, 2029: The maximum lifespan will be reduced to 47 days.
Please see the KnowledgeBase document Lifespan reduction for TLS certificates
UW–Madison participates in the InCommon Certificate Service, which entitles campus staff to obtain server (SSL/TLS) certificates at no cost.
By default, domains under wisc.edu, and wisconsin.edu are available. For other domains read about adding the domain with DCV.
Getting started
Terms of use
Certificates issued by InCommon/Sectigo are currently valid for 1 year but a phased reduction in maximum certificate validity for all certificate authorities is coming.
We strongly recommend customers who are manually renewing certificates to configure ACME, to automatically issue and renew certificates.
Pricing
No cost to campus staff.
Service category
Service provider
Division of Information Technology
1210 W. Dayton Street
608-264-4357