Custom Domain SSL Certificate - New and Renewal

Setting up a new certificate

Using a custom domain (e.g. yourschool.com) and hosting content on Salesforce requires a domain record and SSL certificate to validate your domain to be installed on Salesforce.

The SSL certificates are configured in the ‘Certificate and Key Management’ area:

Certificates are setup using these steps:

In Salesforce

1. Create CA-Signed Certificate in Salesforce

2. Download Certificate Signing Request (CSR)

At your certificate provider

1. Purchase a SSL certificate for your domain

2. Validate the certificate

   1. Typically this is by creating a unique TXT DNS record with a special value from your certificate provider

   2. You will need domain access to you domain DNS records to do this

3. Upload the CSR request from Salesforce

4. Download the SSL certificate file

In Salesforce

1. Upload the Signed Certificate file

2. Assign to the domain records you have setup

Renewing a certficate

At your certificate provider

1. Purchase the renewal certificate at your provider

2. Validate the certificate

   1. Typically this is by creating a unique TXT DNS record with a special value from your certificate provider

   2. You will need domain access to you domain DNS records to do this

3. Download the new certificate

In Salesforce

1. Open Certificate and Key Managament via Setup

2. Edit the certificate requiring renewal

3. Update Signed Certifcate

   1. Select the certificate file you downloaded from your provider

4. All Done

Note: you may need to turn OFF Site Caching in order for the change in certificate to be active

• Sites → Workspaces → Administration → Pages → Go to Force.com → Cache Visual Force Pages