Do you sell SSL certificates?

[WHMCS Chris]

I'm taking a quick poll for a project we're about to kick off and would like some information from you fine individuals.

 

Thanks for participating!

[merlinpa1969]

I hope this new project will be reminder and renew button. Based on the Custom code we had Matt write for us. Since it doesnt work and more and we have been told that there is no more support for the custom code we purchased

[WHMCS Chris]

Hello,

 

Unfortunately I'm not familiar with custom coding projects that were previously provided. However this will be a ground up project involving some heavy hitters to make something fantastic for everyone

[benc555]

Are you asking so you can get an idea of how much it's needed? Because I do not sell SSL certs because of the lack of integration as domains are. If it was built-in, I would sell them!

[merlinpa1969]

yea we paid Matt for a module that will send reminder emails to clients at different intervals, then it puts a button on the page that allows users to renew ( it generates a new order based on the old order ) then cancels the old order.

 

This requires a dedicated product per ssl per year but it was working like a charm,

[getup]

Improved SSL integration would be really appreciated. We tend to stay away from certificates right now due to the amount of manual labour involved.

[cpmax]

It will be of great help, If whmcs creates to-do item like domain, after client has paid for SSL Renewal.

[WHMCS Chris]

It will be of great help, If whmcs creates to-do item like domain, after client has paid for SSL Renewal.

 

Thinking a bit more automated

[merlinpa1969]

Automated with Comodo would be AWESOMEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE

there is a mod that Comodo put out but it never really was up 2 snuff

 

Automated meaning

 

1 Order Placed.

2 Enter CSR Information

3 Pass Order

4 Return Order ( storing CSR KEY AND CRT )

5 Install

6 Send reminder with a renew button

[mirage2000]

I must recommend you to go for BigRock.in

 

They provides you :

 

* Upto 256 bit encryption

* Highest in the Industry Browser Compatibility

* Unlimited Free Re-issues

[And then there was one les]

I think it would be of great benefit to all resellers if the integration of SSL was complete. Take this scenario:

 

SSL for hosted domain:

Purchased in house:

WHMCS Generate CSR with information from account:

Send CSR to provider:

Return SSL Cert to whmcs system:

whmcs install on account:

 

Obviously an emailed cert will still be sent to the client/admin contact, but sending a "we are installing in house" flag with a request, this would be simple. So how do we get the providers on board with this?

 

It would certainly eliminate the need for clients to configure it, Simply pull all the information and have the client verify its all correct, if they change it, look at whether their in house info needs updating. if they confirm all the rest is done automagically.

 

A fully integrated system, you could easily add to that renewal option, While SSL are not renewable with the provider, there is no reason we cant use an auto renew option. Or at least, a notice that a renewal is available.

 

Take Rapid SSL, you would have upto 90 days where an option to renew could be emailed, displayed on the website by the product. There is a huge repeat sale point that is being missed right there, a whole three months of it in this case because there is no easy way to do it without using the marketer. this shouldnt be a marketer feature though in my mind.

Edited May 28, 2013 by CDJ Hosting

[easyhosting]

I think it would be of great benefit to all resellers if the integration of SSL was complete. Take this scenario:

 

SSL for hosted domain:

Purchased in house:

WHMCS Generate CSR with information from account:

Send CSR to provider:

Return SSL Cert to whmcs system:

whmcs install on account:

 

 

Its not that simple with SSL issuing

 

secure emails cert

domain certificates

organizational certificate

EV certificates

 

all these have different criteria and processes before an ssl is issued.

[merlinpa1969]

you can still use the automated system for all but the EV but we dont sell any of those they are too much of a pain in the backside

[easyhosting]

you can still use the automated system for all but the EV but we dont sell any of those they are too much of a pain in the backside

 

true, but id will still hard to implement the way CDJ Hosting wants as SSL process involves approver emails and some organizational certificates are just as hard as EV certs when it comes to the processes, but depends who the CA is.

[ramf]

Hi,

Great,

This issue bothers us a lot and limit the amount of SSL we can sell.

 

We are looking for a fully white-label solution.

 

Customer buy SSL from us and all the communication (CSR request, reminders, CRT and so on) should be fully white-label, so no mail is sent from geotrust or other SSL provider to the customer.

 

Customer should be able to buy, renew, and reissue an SSL – for one domain or wildcard option. All “directly” from us, the customer should not be aware that we buy it from geotrust or enome or resallerclube and so on.

 

I know that for some SSL certificate the SSL provider should contact the customer directly – so they can validated the

business identity, I don’t know if there a way to white-label this option, so maybe WHMCS should focus on the simpler SSL.

 

There should be a way to sell the business identity validated SSL – but some of the process will not be white-label – buy

please try that all the aspects that can be white-label in the process will be so (reminders and so on).

 

If the customer have a hosting service with us - the CSR should be generated automatically and the CRT should be install automatically and so on. The customer should not be asked for CSR and so on.

 

Please try to open this automatic process not only to cpanel or direct admin, please add support for virtuozzo, VMWARE and so on.

 

If a customer don’t have hosting service with us – all the “regular” process should be done via the client area in WHMCS only – not to send us or the SSL provider the CSR and so on – all should be done in WHMCS except the CSR generation and CRT installation.

 

Please find a way not to force the customer to have an admin@domainname / administrator@domainname / hostmaster@domainname and so on email address - it make all the process much more complicated...

 

We should have an option to set the remainders time frame (like in domains – bot not necessarily the same time frame) and to have an option to cease the renew remainders if a customer inform us that he don't want to renew (per SSL).

 

Regarding the renew process – the remainders should generate an invoice and once the customer pays it – the SSL should be renew automatically.

 

Please add an option to configure when to open a ticket of the sales \ service team to manually contact the customer

 

Regarding the SSL renewal (if the customer did not renewed the SSL with the reminders emails).

In the admin side there should be a way to do all the process on behalf of the customer.

 

Reporting:

- List of all the active SSL accounts by type and by income.

- List of all the SSL to be renewed in the next XXX days.

- List of “lost” SSL – SSL that customers did not renewed.

 

and so on...

Edited June 1, 2013 by ramf

[easyhosting]

we use gogetssl.com, which is fully white label and they have a WHMCS module. being white label for SSL does mean that all the order process is through you, but once the CSR is submitted (say for a Comodo SSL cert) your client will get an approver email which will come from Comodo and then the cert will be issued direct to them by Comodo, this is the same with all CA's.

 

Although the client will not know you are using an agent for the SSL certs

[liz926]

That true that why you dont charger high then your agent (Provider SSL)

[easyhosting]

That true that why you dont charger high then your agent (Provider SSL)

 

i can charge less than what gogetssl charge with their retail prices, due to the partner discount they give.

[Root]

However this will be a ground up project involving some heavy hitters to make something fantastic for everyone

 

Please include native support for certificates from both ResellerClub (Thawte) and GlobalSign.

[Alex - Arvixe]

Hi,

Great,

This issue bothers us a lot and limit the amount of SSL we can sell.

 

We are looking for a fully white-label solution.

 

Customer buy SSL from us and all the communication (CSR request, reminders, CRT and so on) should be fully white-label, so no mail is sent from geotrust or other SSL provider to the customer.

 

Customer should be able to buy, renew, and reissue an SSL – for one domain or wildcard option. All “directly” from us, the customer should not be aware that we buy it from geotrust or enome or resallerclube and so on.

 

I know that for some SSL certificate the SSL provider should contact the customer directly – so they can validated the

business identity, I don’t know if there a way to white-label this option, so maybe WHMCS should focus on the simpler SSL.

 

There should be a way to sell the business identity validated SSL – but some of the process will not be white-label – buy

please try that all the aspects that can be white-label in the process will be so (reminders and so on).

 

If the customer have a hosting service with us - the CSR should be generated automatically and the CRT should be install automatically and so on. The customer should not be asked for CSR and so on.

 

Please try to open this automatic process not only to cpanel or direct admin, please add support for virtuozzo, VMWARE and so on.

 

If a customer don’t have hosting service with us – all the “regular” process should be done via the client area in WHMCS only – not to send us or the SSL provider the CSR and so on – all should be done in WHMCS except the CSR generation and CRT installation.

 

Please find a way not to force the customer to have an admin@domainname / administrator@domainname / hostmaster@domainname and so on email address - it make all the process much more complicated...

 

We should have an option to set the remainders time frame (like in domains – bot not necessarily the same time frame) and to have an option to cease the renew remainders if a customer inform us that he don't want to renew (per SSL).

 

Regarding the renew process – the remainders should generate an invoice and once the customer pays it – the SSL should be renew automatically.

 

Please add an option to configure when to open a ticket of the sales \ service team to manually contact the customer

 

Regarding the SSL renewal (if the customer did not renewed the SSL with the reminders emails).

In the admin side there should be a way to do all the process on behalf of the customer.

 

Reporting:

- List of all the active SSL accounts by type and by income.

- List of all the SSL to be renewed in the next XXX days.

- List of “lost” SSL – SSL that customers did not renewed.

 

and so on...

 

While the most of this is possible your clients will still receive the validation email sent from the SSL company. This is the same with any SSL certificate, reseller program or not.

[ramf]

While the most of this is possible your clients will still receive the validation email sent from the SSL company. This is the same with any SSL certificate, reseller program or not.

 

Well hopefully as Originally Posted by WHMCS Chris "However this will be a ground up project involving some heavy hitters to make something fantastic for everyone" - so the new module will be fully white-label solution...

[easyhosting]

so the new module will be fully white-label solution...

this will be impossible as no matter what SSL you are selling these are provided by a CA who will send our the validation email etc.

 

ie. if you sell a Comodo SSL or a Geotrust SSL then do you not think that your client who has ordered the SSL will think the SSL comes direct from you.

 

another way to look at branding. if you go along to your local supermarket do they rebrand all products in their name such as heinz baked bean (the store may resell them , but everyone knows they come from heinz)

[ramf]

this will be impossible as no matter what SSL you are selling these are provided by a CA who will send our the validation email etc.

 

ie. if you sell a Comodo SSL or a Geotrust SSL then do you not think that your client who has ordered the SSL will think the SSL comes direct from you.

 

another way to look at branding. if you go along to your local supermarket do they rebrand all products in their name such as heinz baked bean (the store may resell them , but everyone knows they come from heinz)

 

well...

when you sell / resales a domain - the customer register the domain with you and there is no connection between ENOM or resallerclub to the end customer. this is a good white-label solution.

 

the customer know that he registered a .com domain - but he doesn't know who is the domain registrar.

 

With SSL - the customer will know that it's a rapid SSL from Geotrust but there should be no direct contact between the customer and Geotrust.

 

everything should be done directly from the Client Area - Geotrust will send a request for the customer CSR to his Client Area - and the customer willin put it to his Client Area and from there to Geotrust - no direct contact will be maid.

 

there is no problem with the branding - the customer will know that this is a SSL from Geotrust - but we will be the only one with direct contact to the customer.

[easyhosting]

 

there is no problem with the branding - the customer will know that this is a SSL from Geotrust - but we will be the only one with direct contact to the customer.

 

this is what happens now if you have a module from gogetssl, comodo, globalsign, but then the CSR is sent to the CA to issue the cert, but in this process you are asked for an approver email address, which is sent from the CA to the email address stated where you must enter a code or with some its just to approve the order, once you send this then the cert is issued to the ssl certs admin email address from the CA as its them that issue the ssl and not whoever you resell from.

[ramf]

but in this process you are asked for an approver email address, which is sent from the CA to the email address stated

 

Instead of this email the confirmation will be done in the Client Area via API or something like that.