Ordering SSL certificates via Orbit Options

[web-tiger]

Id like to make a complaint about the ordering process of SSL certificates.

In orbit once you have chosen which type of certifacate yuo wish to buy
you must enter your domain name that you are ordering i entered the domain secure.web-tiger.net thinking this would be the domain the certifiacte would be created for, however its not, this is utterly pointless and misleading for the customer(me) and has caused me to buy 2 certificates for the same domain. due to it being the domain in the CSR thats actually used
Now ordering SSL certificates is not somthing i do everyday, infact this was the first and its not a trival process, createing keys and csr's.

I have created a ticket about this and requested a refund for one of the certs due to the misleading order form.
Please get this process changed or at least stick a note that says the form is just for sales purposes and that the domain you are going to secure is the one you entered in the CSR.

[cprompt]

What domain was the certificate created for then? Are you saying that you created a CSR for one domain, then requested a certificate for another?

At the end of the day, the CSR is king as it is that which the signing authority (eg Geotrust) uses to create the certificate. That is always the way it works, regardless of any order forms and the like. If you created a CSR on your server from the wrong domain, then that is your fault.

Quite why you need to enter the domain in Orbit I can't explain, but, to say again, the certificate is based from the CSR you create. In fact, your server won't accept the new certificate if it doesn't match the CSR.

Sorry.

[DeadEye686]

I think he's aware of that now, he's just recommending that SM make that more clear on the order form. I would reckon that there will be a healthy number of first-time SSL buyers using SM in the near future, and they may not know this ahead of time either.

[cprompt]

I agree totally, just had a look in Orbit and it's as clear as mud. I don't even see any links to FAQs or how-tos, like how to generate a CSR.

I think most of us have screwed up a certificate at one point or another

[web-tiger]

Yes just to clarify, i know all that now its just that when your doing this for the first time its not clear espcially when the orbit order form is misleading.

The domain i wanted the cert for was secure.web-tiger.net but the CSR was set to web-tiger.net.
I didnt know at the time that the orbit order form means FA, i do now
Also their are faq's just below where you enter your CC details, re-reading that now it does say that the CSR is what domain will be used for the cert.

[cprompt]

Perhaps the reason why you need to enter domains on the SSL order page could be clarified. Maybe it's just for reference so you can track your order?

[web-tiger]

yeah, thats what i thought, but when your doing it for the first time and have no idea how ordering SSL certs work it looks like its for the actuall domain you want to secure.
The ticket has been updated and looks like their gonna have a look at the order form