Custom Domains and SSL

TalentLMS supports a functionality called domain mapping, which allows you to use your own domain name instead of the TalentLMS subdomain offered by default. This is common practice if you want to white-label your solution.

SSL Certificates, sometimes called digital certificates, are used to establish a secure encrypted connection between a browser (user's computer) and a server (website). The SSL connection protects sensitive data, such as credit card information or passwords, exchanged during each visit (session). It also increases the end user perception of the quality of your site as it provides a green lock icon on the browser’s toolbar.

In theory, anyone can certify a certificate. It’s called self-certifying but this doesn't always go to plan. So most systems including browsers don’t, by default, trust a self-certified certificate and produce suitably scary error warnings. Instead, the internet relies on Certificate Authorities that act a bit like an underwriter, confirming the details of the certificate (nearly always for a fee, of course).  There are many types of SSL certifications and a number of Certificate Authorities (CA).  

How to activate your FREE SSL certificate for custom domains


In order to activate SSL for a custom domain, some additional work is usually needed from both our sides. This also requires technical knowledge. The process involves an SSL certificate that you need to obtain from a third party provider. We need to host this SSL in our infrastructure. 
 
Starting from TalentLMS 3.5 we simplify significantly the process of activating SSL for your custom domain through an integration between TalentLMS and the LetsEncrypt service. Although the technical details are rather complex the end result is very easy to comprehend; if you want to activate SSL for your custom domain you just need to contact us to activate this option for you. 

Note:
-
The free SSL certificate is available only for Plus plans upwards. Small and Basic plans can activate it as a paid extra. Please contact our support team for more information.
- The free SSL certificate due to LetsEncrypt service limitations can cover up to 100 different hostnames. If your portal has or expected to have more than 99 branches then you must issue your own wildcard certificate following the procedure below.

How to use your own SSL certificate for custom domains


If though, you would prefer to use your own SSL certificate, you can select one of the known Certificate Authorities are GeoTrust, Comodo, Symantec and Thawte. All major domain providers allow you to buy an SSL certification from various Certificate Authorities directly within their admin interface (e.g., GoDaddy, NameCheap). In this case, the process is as follows:

(A) Make sure you have setup custom domain mapping within TalentLMS. In this case, you will get a SSL certificate for that domain. If you use branches you may have to get a wildcard (or STAR) certification to handle all custom domains.

(B) You inform us about your intention to use SSL for your custom domain and we provide you with a CSR (this stands for Certificate Signing Request and is a message sent from an applicant to a certificate authority in order to apply for a digital identity certificate).

The data we need from you to produce the CSR is as follows:

• Hostname (e.g. https://www.mysite.com, this is the custom domain mapped within TalentLMS)
• E-mail address
• Organization name
• Organizational Unit (optional)
• City
• State or Province
• Country

(C) You use the CSR  (if needed, source: Apache mod_ssl) in order to complete the SSL generation process. This happens by communicating directly with your SSL provider. The process varies between SSL providers but at the end of the process, you will get one (or more) certifications.

(D) You send the certification to us. We need to install it directly to our backend for the SSL to take effect.  

Note: Using your own SSL certificate is available only for Plus plans upwards. It has an extra cost as it requires manual work. Please contact our support team for more information. 

Feedback and Knowledge Base