SSL cert

I have a CentOS, Directadmin webserver and a few IPs, my clients require SSL cert.

Do I need to buy one?
What's the advantages of buying one SSL cert?
Can 1 cert be used for as many websites?
How much does each cert cost?
sharepoint2013Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Dave BaldwinFixer of ProblemsCommented:
You need to buy at least one.  Self-signed certificates will cause pop-ups for an untrusted web site with each new browser visitor.  In some cases, cert can be for more than one web site.  Cost ranges from Godaddy's $69.99 a year very basic certificate to expensive Extended Validation certificates starting at $299 and up to way over $1000.  The cheap certificates just encrypt communication between browser and server.  The expensive certificates include insurance and since they are intended to identify your business securely, they also require that you submit a business and credit application to make you qualify for the service they are offering.  Financial instutions will have the expensive ones because they need to show that they have taken every effort to prevent fraud and loss.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Patrick BogersDatacenter platform engineer LindowsCommented:
Hello,

-For common pratice yes you should buy a certificate. Depending on your client needs this can be a basic, cheap, certificate or more expensive in case of extended. (meaning a nice green URL bar in explorer)
In some situations you could use a self-signed-certificate, discuss the option with your client.
- Advantage is encryption on, for example, login credentials.
- No, a standard certificate is for 1 domain. E.g. www.google.com  so not for mail.google.com
You can buy a wildcard certificate like *.google.com meaning it is valid for www.google.com and also for mail.google.com or any other subdomain. Wildcard certificate are very expensive.
- It depends where to buy, prices range for basic from approx. $50 to $2000 for wildcard.

Check with your hosting company what are your possibilities
0
GaryCommented:
You can get a free one here
http://www.startssl.com/

They are as good and valid as any paid for cert.

You can get a UCC cert which can be used across multiple domains, think GoDaddy is the cheapest for these.
Extended validation certs - not necessary, they give no further security than a standard SSL cert, only difference as pointed out above is the validity of the site owner - you have to prove the business details, tax etc. (Amazon uses a standard cert)
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SSL / HTTPS

From novice to tech pro — start learning today.