SSL Certificate Authority
Contact Sales  |  Tel: 1-877-SSLGLOBAL  |  Submit Online Inquiry
Current Location:
Current GlobalSign location - United States United States
SSL Certificates Digital Certificates Enterprise Security Solutions SSL Partners About GlobalSign Technical Support SSL Account Login
  You are here: United States Home > Enterprise Solutions > Trusted Root Contact GlobalSign
Submit Sales Query

SSL Secure Site Seal
SSL Certificate EV SSL
SSL CERTIFICATE INFORMATION

GlobalSign SSL Certificates Code Signing Certificates Digital IDs
Products GlobalSign SSL Certificates Code Signing Certificates Digital IDs
SSL Certificates
Code Signing Certificates
Adobe CDS
Office Document Services
Digital IDs
CA Root Signing
Trusted Root
 
 
 

   
 

Trusted Root CA Certificate

Trusted Root: global trust for your Microsoft Certificate Services CA / Inhouse CA


Get Immediate trust for your SSL, S/MIME and code signing certificates by chaining your Microsoft Certificate Services CA or Inhouse CA Root Certificate to the pre-trusted GlobalSign root certificate

In recent years many enterprises and major organizations have established their own Enterprise Certificate Authority (CA) such as the Microsoft Certificate Services CA with the primary goal of enhancing security for an ever increasing number of diverse web based business processes.  For an enterprise to establish their own Enterprise CA it must self-sign a CA Root Certificate, which is then used to issue digital certificates to employees, extranet users and even machines and services.  Such certificates can then be used to digitally sign and encrypt communications and also to control access to web resources.  However this self-signed Root CA Certificate is not automatically trusted by main-stream operating systems (such as Microsoft Windows), browsers (such as Microsoft Internet Explorer, Mozilla Firefox) or email clients (such as Microsoft Outlook).  This inability to trust causes warning messages to be displayed, resulting in a lack of confidence by staff and increased cost for support and training. 

To avoid these warnings the enterprise would be forced to either accept the increased support costs or to undertake a Root Embedding program to have the self-signed Root CA Certificate inserted into all operating systems, browsers and applications.  Such a program is expensive and labour intensive, taking many years before the enterprise’s Root CA Certificate is sufficiently ubiquitous to be used without support issues.  The time and cost associated with an Embedding Program massively outweigh any advantage that would be associated with implementing an Enterprise CA solution.

Today, there is no need for such CAs to have their Root Certificate directly embedded in browsers to create the necessary feeling of trust. GlobalSign has made available a simple solution for CAs to chain themselves under GlobalSign's embedded Root Certificate: Trusted Root™.

As a leading WebTrust accredited Certification Authority, GlobalSign has maintained its own pioneering Root Embedding program GlobalSign Ready for over 10 years and now the GlobalSign Root CA Certificate is trusted by practically all mainstream browsers and applications. With GlobalSign’s Trusted Root there is no need for individual Enterprise CAs to have their own Embedding program, instead GlobalSign allows use of its own ubiquitous Root CA certificate to give the customer its own set of new, but highly trusted, Root CA certificates.  The customer then immediately inherits the trust associated with the GlobalSign Root CA which provides an easy way for certificates issued by the enterprise to be transparently accepted in all popular applications, thereby eliminating the costly support issues. 

 
benefit Global Recognition & Acceptance
Trusted Root permits Certification Authorities operated by enterprises to be accepted by all browser and mail client software dating back many years. Consequently, all certificates issued to the enterprises community through Microsoft Certificate Services CA or inhouse CA will gain the inherent trust provided by the 10 years plus of GlobalSign's own root embedding program.
benefit Greatly reduces support costs.
Rolling out a PKI with an untrusted root certificate is costly - administrators are needed to install the enterprise's own root certificate on each machine within the community (employees, extranet users etc). This activity is costly and inconvenient. Trusted Root removes the need to install any enterprise root certificates as Trusted Root causes all certificates to be inherently trusted.
benefit Trusted & Independent CA Deployment
By having its Root Certificate accepted and trusted by all standard browser software, the Microsoft Certificate Services CA or inhouse CA can easily perform:
  Certificate Management
The Microsoft Certificate Services CA or inhouse CA is able to issue, publish & revoke trusted certificates completely independently from GlobalSign or any other trusted CA.
  Independent Policies
This signifies that the enterprise determines Key Management Policies, Secure Infrastructure Policies & Organizational Policies independently from but approved by GlobalSign.
  Brand Name Management & True Certificate White Labeling
The Microsoft Certificate Services CA or inhouse CA uses its own brand name for the certificate issuing, management & revocation as the certificates will not be GlobalSign branded or co-branded.
benefit All Certificates issued are trusted by all popular browsers, mobile devices and applications > compatibility listing
benefit Issued from a 2048 bit Root CA Certificate. All Certificates issued use strong 128 bit or 256 bit SSL security for every visitor. Includes free SGC "step up" encryption technology for SSL Certificates... how does this work?
benefit Dedicated Account Manager & additional enterprise support programs available

What is Trusted Root?

Trusted Root is a uniquely developed service for Enterprise Certification Authorities who do not have their Root Certificate embedded in popular browsers. GlobalSign's Root Certificate is embedded & configured in the following browsers and operating systems, among others:

SSL bulletNetscape Communicator starting from version 4.60.Version and
SSL bulletMicrosoft Internet Explorer (from 5.01)
SSL bulletMicrosoft Windows (NT 4.0 (from Service Pack 6), ME, 2000, XP, Server 2003).

Because of the wide-spread use of GlobalSign certificates, many users will already have done this. Vendors, such as Microsoft, also include the GlobalSign Root Certificate in recommended upgrades which are automatically downloaded by users. GlobalSign is committed to keeping its Root Certificate in all major browsers and future related products.

Root Certificate in browser

Who should use Trusted Root?
SSL bullet Trusted Root has been developed as a service for enterprises operating a Microsoft Certificate Services CA or other inhouse CA and who are looking for international recognized trustworthiness for certificates issued.
SSL bullet These Enterprise Certification Authorities could be:
Business-wide business domains: deliver generic trust services to finance, legal, public administration and health sector
Enterprise-wide employees/members to deliver specific trust
Application-wide services like Brokering, Banking, Gambling, Ticketing, Payment, Shopping, Procurement, etc.

Need Assistance?
Contact us 1-877-SSLGLOBAL (877-775-4562), email sales@globalsign.com or Request More Info

 
  SSL Certificates | Digital Certificates | Enterprise Solutions | Partners | Customer Support | About GlobalSign | Site Map | Contact Us © GlobalSign. All rights reserved.  
 
WebTrust for CAs GlobalSign SSL WebTrust for EV SSL GlobalSign

Digital Certificate Support

GlobalSign Digital Certificates are issued from a 2048 bit SHA-1 Root Certificate Authority and are trusted by all popular
Browsers, Operating Systems, Mobile Devices and Applications.