Skip to main content
Feedback

Configuring vanity URLs with customer certificates

A Vanity URL lets you use a custom domain name for your Managed File Transfer site instead of the default URL. You can configure Vanity URLs using customer-provided SSL certificates.

Vanity URL

A Vanity URL is a custom domain name (For example, you can use a domain like transfer.yourcompany.com) that points to your Managed File Transfer site.

This provides:

  • Brand consistency across your digital properties.
  • Enhanced user trust and recognition.
  • Simplified access for your users.

Before you begin

To implement a Vanity URL, you must provide an SSL certificate in .PEM format with the following specifications:

Certificate chain order

Your .PEM file must contain the following certificates in this exact order:

  1. Domain certificate
  2. Intermediate certificate 1
  3. Intermediate certificate 2
  4. Root certificate

Key requirements

  • Include private key in the .PEM file.
  • The key must be unencrypted (there is no password protection).
  • Supported key types: RSA (2048-bit or higher) or ECC (P-256 or P-384).

Procedure

  1. Prepare your certificate
  • Combine all certificates and private key into a single .PEM file.
  • Verify the correct order of certificates.
  • Ensure there are no extra spaces or characters between certificates.
  1. DNS configuration
  • Create a CNAME record pointing your Vanity domain to your Managed File Transfer site.
  • Allow 24-48 hours for DNS propagation.
  1. Certificate submission
  • Submit your .PEM file through Managed File Transfer support ticketing portal.
  • The support team will validate your certificate chain and private key.
  • You will receive a confirmation once the certificate is successfully installed.

Certificate validation checklist

Before submitting your certificate, verify:

  • Certificate chain is complete and correctly ordered.
  • Domain name matches your intended Vanity URL.
  • The certificate is currently valid and has not expired.
  • Private key matches the domain certificate.

Maintenance and Renewal

  • Monitor certificate expiration dates.
  • Plan to submit renewed certificates at least 30 days before expiration.
  • Maintain consistent certificate chain order when submitting renewals.

Troubleshooting

Common issues

  • Certificate chain order incorrect.
  • Missing intermediate certificates.
  • Private key doesn't match certificate.
  • Invalid certificate format.
  • Expired certificates.

Resolution steps

  1. Verify certificate chain using OpenSSL.
  2. Check certificate expiration dates.
  3. Validate private key matches certificate.
  4. Ensure proper .PEM formatting.

Support

For assistance with Vanity URL configuration or certificate issues, contact our support team:

Security notes

  • Keep your private key secure and never share it with unauthorized parties.
  • Use strong encryption for your certificates (minimum 2048-bit RSA).
  • Follow industry best practices for certificate management.
  • Regularly audit your SSL configuration for security vulnerabilities.
On this Page