Cloud Certificate Manager (CCM)
Contact Us
Cloud Certificate Manager (CCM)

    Cloud Certificate Manager (CCM)

    Buy an SSL Certificate Buy Private CA Console

    Certificate Lifecycle Management

    You can request, issue, query, and revoke SSL and private certificates and manage tens of millions of certificates in one place.

    Private CA Hosting

    You can create private CAs in one-click. There is no need to build and maintain complex CA infrastructure.

    One-click SSL Certificate Deployment

    You can deploy SSL certificates to major cloud products in one-click. CCM can automatically update and rotate multi-year SSL certificates.

    Secure and Reliable Key Storage

    Huawei Key Management Service (KMS) and Hardware Security Module (HSM) are used to protect keys.
    Product Notice

    [Notice on Switching of DigiCert Root Certificates] Starting December 1, 2024, SSL certificates of DigiCert, GeoTrust, and RapidSSL will be issued using new intermediate and root certificates.

    Learn More

    SSL and Private Certificates for Different Scenarios

    SSL and Private Certificates for Different Scenarios

    Certificate Type

    SSL Certificate

    Private Certificate

    Certificate Authority

    World-famous CAs, such as DigiCert, GlobalSign, and GeoTrust

    A trusted CA established inside an enterprise

    Security Level

    Many key algorithms supported, such as RSA and ECC; trusted by public browsers and systems, EV or OV SSL certificates available to meet special security requirements

    Many key algorithms supported, such as RSA and ECC, trusted by internal systems of enterprises

    Deployed on Internal Network

    Not supported. SSL certificates must be associated with a domain name.

    Supported. Private certificates can be deployed on internal networks.

    Certificate Validity Period

    One-time payment. The validity period can be one year, two years, or three years (starting from the date of issuance). When the validity period is about to expire, you need to purchase a new one and apply for a certificate again.

    Private root CAs: 1 to 30 years. Private certificates: 1 to 20 years

    Scenario

    SSL certificates encrypt data transmission for websites, applications, and applets. Using SSL certificates can strip away the "Not Secure" warning from browsers, improve brand image, raise SEO rankings, and help meet security compliance standards.

    Private certificates identify and protect resources such as applications, services, devices, and users inside an organization. Private certificates are typically used for intranets, Internet of Vehicles (IoV), and Internet of Things (IoT).

    Recommended Certificates
    GeoTrust single-domain OV certificates

    One-off billing. The validity period can be one year, two years, or three years.

    Private CAs and certificates

    Yearly/Monthly: You can apply for a private certificate after creating a private CA.

    Recommended Price
    From $ 309.00
    USD/year
    Buy
    From $ 400.00
    USD/month/CA
    Buy

    SSL Certificate
    Certificate Authority

    World-famous CAs, such as DigiCert, GlobalSign, and GeoTrust

    Security Level

    Many key algorithms supported, such as RSA and ECC; trusted by public browsers and systems, EV or OV SSL certificates available to meet special security requirements

    Deployed on Internal Network

    Not supported. SSL certificates must be associated with a domain name.

    Certificate Validity Period

    One-time payment. The validity period can be one year, two years, or three years (starting from the date of issuance). When the validity period is about to expire, you need to purchase a new one and apply for a certificate again.

    Scenario

    SSL certificates encrypt data transmission for websites, applications, and applets. Using SSL certificates can strip away the "Not Secure" warning from browsers, improve brand image, raise SEO rankings, and help meet security compliance standards.

    Recommended Certificates
    GeoTrust single-domain OV certificates

    One-off billing. The validity period can be one year, two years, or three years.

    From $ 309.00
    USD/year
    Buy

    Private Certificate
    Certificate Authority

    A trusted CA established inside an enterprise

    Security Level

    Many key algorithms supported, such as RSA and ECC, trusted by internal systems of enterprises

    Deployed on Internal Network

    Supported. Private certificates can be deployed on internal networks.

    Certificate Validity Period

    Private root CAs: 1 to 30 years. Private certificates: 1 to 20 years

    Scenario

    Private certificates identify and protect resources such as applications, services, devices, and users inside an organization. Private certificates are typically used for intranets, Internet of Vehicles (IoV), and Internet of Things (IoT).

    Recommended Certificates
    Private CAs and certificates

    Yearly/Monthly: You can apply for a private certificate after creating a private CA.

    From $ 400.00
    USD/month/CA
    Buy

    Why Huawei Cloud CCM?

    Meet Service Requirements with Multiple Certificate Types

    Meet Service Requirements with Multiple Certificate Types

    • We provide one-stop shopping for SSL certificates issued by well-known international CAs.

    • You can use SSL to encrypt connections between your website, applications, or applets and your customers. Your customers will no longer see warnings indicating that their connections are not secure.

    • Private certificates identify and protect internal resources, such as applications, servers, IoT devices, and user details.

    Full-lifecycle Management Ensures Easy Hosting

    Full-lifecycle Management Ensures Easy Hosting

    • You can centrally manage tens of millions of certificates and keys. Expiration notifications are supported too.

    • You can deploy certificates for other Huawei Cloud services in just a few clicks.

    • CCM can automatically update and rotate multi-year SSL certificates used for other services.

    Efficient, Flexible, Out-of-the-box Services on the Cloud

    Efficient, Flexible, Out-of-the-box Services on the Cloud

    • You can easily obtain CA and certificate management capabilities on Huawei Cloud on a pay-per-use basis.

    • Private CAs are easy to deploy and use. You do not need to build or maintain complex CA infrastructure.

    • CCM provides you with great flexibility through abundant APIs that allow you to efficiently integrate and deploy products in the development environment.

    Secure and Reliable Services and Various Algorithms

    Secure and Reliable Services and Various Algorithms

    • Key Management Service (KMS) and Hardware Security Module (HSM) provides secure and reliable key storage.

    • CCM provides you with certificates encrypted with mainstream cryptographic algorithms such as RSA and ECC algorithms.

    Certificate Management for Any Scenario

    SSL Certificate Management
    SSL Certificate Management

    You can deploy SSL certificates on your websites, applications, or other services to migrate your workloads from HTTP to HTTPS.


    Application scenarios: Trusted website authentication | Trusted application authentication | Data transmission protection

    Advantages
    One-Stop Certificate Management

    You can apply for, manage, query, and verify certificates with ease. SCM makes it easy to use SSL certificates for other Huawei Cloud services in just a few clicks.

    Quick Certificate Issuance

    You can purchase multiple SSL certificates of different CAs on SCM.

    Rapid Deployment

    You can use an SSL certificate to other Huawei Cloud services (such as CDN, ELB, and WAF) in just a few clicks.

    Identity Authentication

    Your customers can query and confirm your company details and website identity, so they can be sure your website is authentic.

    Related Services
    Web Application Firewall (WAF)
    Domain Name Service (DNS)
    Content Delivery Network (CDN)
    Elastic Load Balance (ELB)
    Private Certificate Authority
    Private Certificate Authority

    PCA provides enterprise-specific CAs while complying with the industry standards so that you can manage all your certificates on CCM.


    Application scenarios: Enterprise digitalization | IoV | IoT

    Advantages
    Managed Private CAs

    You do not need to build or maintain complex CA infrastructure. You can easily manage CAs on Huawei Cloud on a pay-per-use basis.

    Complete CA Hierarchy

    You can create a flexible CA hierarchy that covers root CAs, subordinate CAs, and external CAs. This allows you to deploy as many applications as you want.

    Varied Key Algorithms

    PCA supports different key algorithms, such as RSA2048, RSA4096, ECC256, and ECC384. It supports x.509v3 certificates and complies with international PKI and CA standards.

    Flexible API Integration

    PCA provides you with great flexibility through abundant APIs that allow you to efficiently integrate and deploy products in the development environment.

    Related Services
    Elastic Cloud Server (ECS)
    Object Storage Service (OBS)
    Data Encryption Workshop (DEW)
    Cloud Trace Service (CTS)

    Documentation

    Start Your


    Cloud Certificate Manager Journey

    Buy Now

    More Services

    More Services

    Web Application Firewall (WAF)

    Malicious request identification and defense against unknown threats

    Elastic Load Balance (ELB)

    Distribute incoming traffic across multiple backend servers

    Content Delivery Network (CDN)

    Get content to users faster on this scalable, secure, high-speed network