Private SSL

Privately trusted SSL certificates

Entrust Private SSL certificates enable the continued use of non-registered domain names.

Private SSL Certificate

This new type of certificate provides the same key sizes, signing algorithms, validity periods and CA protection as Entrust’s proven publicly trusted SSL certificates — but are issued via a privately shared CA that protects you from possible impersonation attacks by ensuring no two certificate names are alike.

Trust comes from meeting and beating your customer’s expectations. That’s why you should let your visitors know they are on a secure website with the Entrust Site Seal.

Helpful Resources

Contact Sales navigate_next

3 convenient ways to reach us!

Submit Contact Form

1-888-690-2424 Live agents available 8am - 6pm EST Monday - Friday

Certificate Services Support navigate_next

Check out our comprehensive Digital Certificate Help Center for quick answers to all your SSL/TLS questions.

Certificate Comparison navigate_next

Not sure which certificate you need? Compare your options here.

Subscription Comparison navigate_next

This easy-to-understand SSL Subscription Service Comparison chart outlines the differences between Entrust’s subscription offerings — enabling you to make the smartest decision for your organization.

Documentation navigate_next

Want to learn more about your Entrust Datacard product?  Here you’ll find brochures, data sheets, white papers and more that provide you the information you need.

Trust Seal navigate_next
  1 year* 2 year*  
Regular Pricing $149 each $130 /year BUY NOW
*Pricing for United States, Canada and UK. All prices are in U.S. dollars and are subject to change without notice. Canadian Harmonized Sales Tax (HST) is charged on orders from Canada. International customers, please refer to the International Pricing tab.
  1 year* 2 year*  
Regular Pricing $224 each $195 /year BUY NOW
*Pricing for United States, Canada and UK. All prices are in U.S. dollars and are subject to change without notice. Canadian Harmonized Sales Tax (HST) is charged on orders from Canada. International customers, please refer to the International Pricing tab.
Visa, Mastercard, American Express


In order to issue an Entrust Private SSL Certificate, you must have access to an Entrust Certificate Services SSL Enterprise account. If you do not have an account with us, please contact our sales team. You will need to supply the following information for your account and Private SSL Certificate:

  • Provide Entrust with the Non Fully Qualified Domain name you are looking to secure so that we can reserve exclusive rights to that domain for your organization.
  • Your legal business name and address
  • An account Billing Contact, Technical Contact who will receive account credentials, and an Authorization account.

Once your account has been approved, you will need to supply a Certificate Signing Request (CSR) to issue the certificate. Always remember to back up your private key. If you lose your private key, you can always re-issue the certificate for free using your Certificate Services SSL Enterprise account.

For additional inquires or assistance when buying an Entrust Advantage SSL Certificate, please review the Entrust SSL Certificate Enrollment Guide.

For further information about our digital SSL certificates or to place a purchase order, please call 1-888-690-2424 or contact us online.

Purchasing an Entrust Datacard SSL/TLS certificate is easy! Our handy Guide explains step-by-step.

Measurable Benefits

yellow person icon

Registered & Non-Registered Domains

Domains for Entrust Private SSL Certificates are registered to just one customer, further bolstering security. For additional flexibility, private SSL certificates may also include previously registered fully qualified domain names.

arrows icon

Unlimited Server Licensing

Like many of Entrust’s trusted SSL certificates, Entrust Private SSL Certificates may be deployed on more than one server — at no additional charge — and can be reissued as required.

cycle icon

Full Certificate Lifecycles

Take full control of your private SSL certificates. From revocation, reissuance and renewal, manage Entrust Private SSL Certificate lifecycles just like a standard publicly trusted SSL certificate via the Entrust Certificate Management service.

purple piggybank icon

Up to 250 SAN Values

Secure up to 250 private domains via a single Entrust Private SSL Certificates. This introduces thousands of dollars in savings compared to the competition, who often limit you to 100 SAN values.

lightning icon

Quick Issuance

Entrust verification begins immediately based upon your certificate request, and your certificate is usually ready within 1-2 days.

omni icon

Unlimited Issuance Policy and Server Licenses

Enable flexible certificate re-issuance when users lose passwords or re-image machines, and install your certificates on an unlimited number of servers.

red ribbon icon

Self-Service Certificate Creation

Eliminates the wait for manual certificate issuance.

purple shield icon

Convenient Expiry Notifications

Lessens the risk of inadvertent certificate expiration.

support icon

SSL Certificate Expertise

Entrust customer service experts are available to help you through every step of the certificate management lifecycle.

Entrust Datacard has now partnered with industry leader SiteLock to provide an additional layer of security for your site!

Technical Support

Support Your System

Get downloads, documentation and support for your On-Demand Card Issuance products:

Need More Help?

For immediate assistance Entrust Datacard has Customer Care Centers that are available to serve customers in the Americas, EMEA, and Asia Pacific regions.


Why use the Entrust TRUSTWORTHY SITE SEAL?

Entrust Site Seal

Let your visitors know they are on a secure Web site, with the Entrust Site Seal. It’s been proven that customers have increased confidence and lower “abandonment” when you use a site seal. The Entrust Site Seal establishes your business as a safe place to do online business, giving users a higher level of trust.

In today’s business environment, it is imperative that organizations establish trust with their customers online. The best way? Let your visitors know you have taken steps to ensure the security of their information by clearly displaying the Entrust Site Seal.*

  • Posting the Entrust Site Seal on your Web site let’s your visitors know that you are committed to online security.
  • Unless you deploy Extended Validation Certificates, the only indication of a secure connection customers receive is a small lock on the bottom of Web browsers. Customers may not know to look for this lock, but will be assured by a security seal.
  • Reduces shopping cart abandonment and increases order completions.
  • Just by clicking the Entrust Site Seal, visitors can verify your site’s authenticity and certificate status.

Entrust is recognized as a trusted security brand for more than a dozen years, providing layered security solutions that help instill confidence for consumers, enterprise and governments. Now you can leverage that brand to help secure the identities of your own customers.

Entrust Customers: For information on how to download the Entrust Site Seal, please visit The Entrust Site Seal FAQ page.

*The Entrust Site Security Seal is included with each Entrust SSL certificate. The Entrust Site Security Seal is a Web-enabled clickable logo, which is licensed to Web sites that use Entrust digital certificates.


Your website’s security is our number-one priority. That’s why Entrust OV SSL Certificates feature ECC public key encryption in our root certificates. With support for SHA-2 algorithms, Entrust SSL Certificates protect your data by offering stronger security and increased performance.


Security providers work continuously to innovate technology to upend hackers who are diligent in their efforts to craft clever new ways to steal data. Advanced ECC, while not new, uses a different approach than standard RSA. RSA draws its strength by using increasingly larger logarithms, which take more time to process. ECC, on the other hand, relies on discovering a distinct logarithm within a random elliptic curve. The larger the elliptic curve, the greater the security. Using a random formula improves the encryption strength while a smaller logarithm increases the performance of digital certificates.


Stronger Keys

ECC uses a smaller algorithm to generate keys that are exponentially stronger than RSA keys.

Increased Performance

The smaller algorithm means less data is being verified between the server and the client, which translates to increased network performance. This is especially important for websites that experience a high level of traffic.


Entrust SSL Certificates using ECC technology are ideal for scenarios where server-load performance is critical, and site visitors and the Web/app server are known to be compatible with ECC keys.

Buy Now

ECC Resources


1. Switch to FQDNs, Keep Public SSL Certificates

Switch to fully qualified domain names (FQDNs) and continue to use public SSL certificates. Root certificate trust is automatically delivered by the operating system or the browser without your IT involvement. Properly changing domain names, however, could take an extended period of time — or even break existing integrations — as they may be hard-coded into existing applications.

2. Use In-House, Self-Signed Certificates

Organizations who require total control may choose to use a dedicated privately trusted CA to deploy non-public SSL certificates for internal security. Offload the burden of managing your own CA by implementing a managed PKI from Entrust. This hosted approach offers the same proven certificates as an in-house PKI without added expense or need to employ an expert staff. You are, however, leaving certificate policy to individual admins, which serves as a disadvantage to most companies.

3. Switch to Entrust Private SSL Certificates

Migration to Entrust Private SSL Certificates enables the continued use of non-registered domain names. This new type of privately trusted certificate provides the same key sizes, signing algorithms, validity periods and CA protection as Entrust’s proven publicly trusted SSL certificates — all issued via a private shared CA that ensures no two names are alike.


Entrust is more than a security company. We’re your partner — real people you can depend on to provide the security, focus and trust you deserve.

And while we do provide a full range of security solutions for all type of organizations, Entrust Certificate Services personnel have one with one purpose in mind – your protection. Let us help you build a layered, identity-based security approach through our comprehensive portfolio of SSL digital certificates and services.

Learn Why Entrust SSL is Right for You


Flexible licensing options lets you choose the plan that works best for your unique business environment helping you to optimize SSL certificate management not just for added value, but to actually save money.

Subject Based Program

Reusable Licenses for Changing Web Environments

Our unique Subscription based plan lets customer reuse SSL/TSL certificates for a cost effective way to plan and budget their SSL/TSL certificate inventory.


Units Based Program

Traditional Certificate License Provisioning

This is a units based system for all digital certificate types where certificates can be used for 1, 2 or 3 years, each year consuming one unit.


94% of surveyed Entrust Certificate Services customers agree the Subscription Plan is effective in saving money on digital certificates.

Source: TechValidate survey of 405 users of Entrust Datacard

purple headphones icon

Need Technical Support?
Select to Click-to-Chat with an expert.