[Support Guide] Tips for bringing your own custom SSL certificates to Netlify

Hi there! While it’s not a very common occurrence, you may decide to bring your own custom TLS/SSL certificate to provide HTTPS for your Netlify site. Here are some tips that might be helpful in that instance. Also, our HTTPS (SSL) docs include guidelines on what you’ll need to enter in the Netlify app and where to go to enter it.

If you’re stuck with questions about how to format those items, or you need to work with your external certificate provider to troubleshoot the custom cert, here are some tips on how to format the items you’ll need to enter in the Netlify app:

  1. The certificate itself, in X.509 PEM format (usually a .crt file)

    The contents of the certificate should start with something like:

    -----BEGIN CERTIFICATE-----
    MIIGbDCCB
    

    and end with something like:

    ....A==
    -----END CERTIFICATE-----
    
  2. The private key you used to request the certificate

    The private key should start with something like:

    -----BEGIN PRIVATE KEY-----
    MIIEvQIBADANB
    

    and end with something like:

    ....nQjRDxA=
    -----END PRIVATE KEY-----
    
  3. A chain of intermediary certificates from your Certificate Authority (CA)

    This should be a single file, but it may be several certificates concatenated together in the file. Note there may be many similar stanzas in the same file, or only one; both ways can be valid. This should start with something like:

    -----BEGIN CERTIFICATE-----
    MIIE
    

    and end with something like:

    E4f97Q=
    -----END CERTIFICATE-----
    

We hope this helps you get your custom certificate set up successfully - it’s a fairly uncommon circumstance, but can be tricky without guidance.

If you have questions or need more clarity, please comment below!

2 Likes