Skip to main content
Feedback

Configuring vanity URLs

A Vanity URL lets you use a custom domain name for your Managed File Transfer site instead of the default URL. You can configure Vanity URLs using customer-provided SSL certificates.

Vanity URL

A Vanity URL is a custom domain name that points to your Managed File Transfer site. For example, you can use a domain like transfer.yourcompany.com

This provides:

  • Brand consistency across your digital properties.
  • Enhanced user trust and recognition.
  • Simplified access for your users.

Prerequisites

To implement a Vanity URL, you must provide an SSL certificate in the .PEM format with the following specifications:

  • Certificate chain order

    Your .PEM file must contain the following certificates in this exact order:

    1. Domain certificate
    2. Intermediate certificate 1
    3. Intermediate certificate 2
    4. Root certificate

  • Key requirements

    • Include the private key in the .PEM file.
    • The key must be unencrypted (not protected by a password).
    • Supported key types are RSA (2048-bit or higher) or ECC (P-256 or P-384).

Implementation

  1. Prepare your certificate
    • Combine all certificates and private key into a single .PEM file.
    • Verify the correct order of certificates.
    • Ensure there are no extra spaces or characters between certificates.
  2. DNS configuration
    • Create a CNAME record pointing your vanity domain to your Managed File Transfer site.
    • Allow 24-48 hours for DNS propagation.
  3. Certificate submission
    • Submit your .PEM file through the Managed File Transfer support ticketing portal.
    • The support team validates your certificate chain and private key.
    • You will receive confirmation once the certificate is successfully installed.

Before submitting your certificate, verify the following:

  • Certificate chain is complete and correctly ordered.
  • Domain name matches your intended vanity URL.
  • The certificate is currently valid and not expired.
  • Private key matches the domain certificate.

Maintenance and Renewal

  • Monitor certificate expiration dates.
  • Submit renewed certificates at least 30 days before expiration.
  • Maintain consistent certificate chain order when submitting renewals.

Common issues

  • Certificate chain order incorrect.
  • Missing intermediate certificates.
  • Private key doesn't match certificate.
  • Invalid certificate format.
  • Expired certificates.

Resolution steps

  1. Verify certificate chain using OpenSSL.
  2. Check certificate expiration dates.
  3. Validate private key matches certificate.
  4. Ensure proper .PEM formatting.

For assistance with vanity URL configuration or certificate issues, contact our support team.

Security notes

  • Keep your private key secure and never share it with unauthorized parties.
  • Use strong encryption for your certificates (minimum 2048-bit RSA).
  • Follow industry best practices for certificate management.
  • Regularly audit your SSL configuration for security vulnerabilities.
On this Page