Thank you for choosing Infomaniak to secure your sites with an SSL certificate EV or DV from Sectigo.

An SSL certificate secures all exchanges between your server and your visitors, displays a padlock and adds the https to your site.

Which SSL certificate to choose?

• What are the requirements for an EV SSL certificate?
• What are the differences between an EV and DV certificate?
• Can I order an SSL certificate from Infomaniak if my site is hosted elsewhere?
• What does the warranty of a Sectigo SSL certificate exactly cover?

What would you like to do?

• Fix any potential errors after activating an SSL certificate
• Install a free Let's Encrypt SSL certificate on a site
• Install a wildcard certificate
• Uninstall a Let's Encrypt certificate
• Update a Let's Encrypt certificate (e.g. after adding/removing aliases)
• Familiarize yourself with all the FAQs about SSL
• Contact Infomaniak support

Thank you for entrusting Infomaniak with the management of your storage server NAS Synology. This guide allows you to quickly use the essential functions of your new product.

Foreword

• In case of any issues, Infomaniak supportcan only answer questions regarding the hardware of Synology storage servers.
• For questions related to the use of the DSM (operating system) consult Synology help directly ; (find out more).

Manage the Synology

• What can you do with a NAS Synology?
• 10 methods to secure access to the NAS Synology
• Synology NAS data security
• Restart and reset a Synology NAS
• Perform a speed test on NAS Synology

Back up your data

• Install an SSL Let's Encrypt certificate on a Synology NAS
• Set up a Synology NAS with Time Machine

and also…

• Back up Synology with Cloud Sync on Swiss Backup (Swift)
• Back up Synology with Hyper Backup on Swiss Backup (Swift)

Extend the functionalities

• Link a domain name to Synology Infomaniak
• Create a custom MX (for Synology NAS for example)
• Set up DynDNS with a Synology NAS
• Create a private network between servers
• Synology NAS High Availability in a Swiss data center
   

and also…

• Connect a Synology NAS with a VPN
• Create a VPN in Switzerland with a Synology NAS

Click here to share a review or suggestion about an Infomaniak product.

This guide explains how to order, link or remove a dedicated IP from a website.

Manage dedicated IPs on a hosting plan

Order one or several first dedicated IP addresses

To do this:

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the relevant product.
3. Click on Web in the left sidebar.
4. Click on Dedicated IPs in the left sidebar.
5. Click on the button to order one or more IP addresses:
   

Order one or several additional dedicated IP addresses

To do this:

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the relevant product.
3. Click on Web in the left sidebar.
4. Click on Dedicated IPs in the left sidebar.
5. Click on Order :
   

Associate a dedicated IP address with a website on a hosting plan

Once the IP has been ordered and paid for, familiarize yourself with the prerequisites below, as switching to a dedicated IP address for a website may cause a temporary interruption, especially in the presence of a certificat SSL Let’s Encrypt. To limit the impact:

• Start by reducing the TTL of the DNS records A and AAAA (for @ and www) to 5 minutes.
• Wait for the previous TTL duration before making any changes.
• The change below should be made during a period of low traffic to limit the inconvenience caused by the inevitable interruption.
• At the end of the procedure, you will need to wait for the new TTL to propagate the new configuration and for the SSL certificate to be regenerated, then check the accessibility of the site in HTTPS to ensure that everything is working correctly.

To switch to a dedicated IP address:

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the relevant product.
3. Click on Web in the left sidebar.
4. Click on Dedicated IPs in the left sidebar.
5. Click on the button to dedicate the IP to a site on your hosting:
   
6. Select the site to assign the new IP address to.
7. Check the box after reviewing the warnings.
8. Click on the Associate button:
   

Remove a dedicated IP address from a website

Once the IP is installed, to uninstall it:

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the relevant product.
3. Click on Web in the left sidebar.
4. Click on Dedicated IPs in the left sidebar.
5. Click on the action menu ⋮ located to the right of the relevant item.
6. Choose Unbind:
   
7. Take note of the warnings and confirm the deletion to complete the IP uninstallation procedure.

This guide explains the main differences between an EV and DV certificate.

SSL EV Certificates: for companies

The Sectigo SSL EV certificate can only be issued to companies registered in an official registry.

It provides the highest level of trust with your clients and offers unique advantages in addition to including the benefits of a DV certificate:

• name of your company in the navigation bar
• lock in the navigation bar
• dynamic site seal
• domain name validation
• manual verification of your company's details and identity
• warranty up to $1,750,000 for end users
• 7/7 support

Activating an EV SSL certificate may take up to 24 hours and will require action on your part.

SSL DV Certificates: for companies and individuals

The Sectigo DV certificate is available to individuals and companies. It does not include some of the advantages mentioned above, but it offers additional benefits compared to free Let's Encrypt SSL certificates:

• dynamic site seal
• domain name validation
• guarantee up to $10,000 for end users
• support 24/7

The activation of a DV SSL certificate is immediate.

And what about Let's Encrypt certificates?

A free Let's Encrypt certificate guarantees the same level of encryption as an EV or DV certificate. However, Let's Encrypt certificates unfortunately do not offer the following benefits:

• manual validation of your company's credentials and authenticity (EV)
• warranty for end users in case of fraud (EV/DV)
• support in case of questions

In summary, Let's Encrypt certificates ensure the encryption of exchanges between your users and your site, but they do not guarantee to internet users that they are on a legitimate site whose identity has been authenticated by a certification authority.

This guide explains the differences between the web hosting offers to help you choose the best solution according to your computer needs.

Web Hosting Starter

The free web hosting

The Starter Web hosting is offered for free with each domain name registered with Infomaniak. It provides 10 MB of disk space to create a site (basic pages in HTML language only - no PHP, no database) even without particular knowledge thanks to the Welcome Page tool.

• Register or transfer a domain name with Infomaniak
• Learn more about the benefits included with a domain name

Shared Web Hosting

The flagship offer to create your sites

These web hostings are shared offers (the websites will be hosted on servers whose resources are shared with other customers). To ensure the reliability of these shared services, Infomaniak servers use on average only 40% of the CPU power and are equipped with professional, latest generation SSD disks.

Web hosting offers a minimum of 250 GB of disk space and allows you to manage multiple websites with multiple domain names. This offer includes all the technologies usually used to create professional sites: PHP, MySQL, FTP and SSH access, SSL certificates and easy installation of WordPress or common CMS, etc. It is also possible to add a Node.js site and/or Site Creator.

Cloud Server

Professional Web hosting

With a Cloud Server, the resources allocated to you are not shared with other clients and you can customize the hardware and software configuration of your server according to your needs. A Cloud Server also allows you to use components that are not available on shared web hosting (Node.js, mongoDB, Sol, FFMPEG, etc.).

• A Cloud Server allows you to easily manage your server via the same administration interface as Web hosting - you manage the sites in the same way.
• A VPS allows you to manage your server completely autonomously with the version of Windows or the Linux distribution of your choice (Debian, Ubuntu, openSUSE, ...) - solid technical skills are required to use a VPS, including VPS Lite.

Public Cloud (and Kubernetes Service)

Open, proven, and secure IaaS solution

For Infomaniak, it is the infrastructure that drives kDrive, Swiss Backup and the Webmail, services used by several million users. But Public Cloud is accessible to everyone and provides the resources you need to develop your projects.‍

With customized and tailored offers, you will have no trouble managing your development budget. No setup fees. No minimum amount. Cancelable at any time. You only pay for the resources actually used with Public Cloud at the end of each month, same for Kubernetes Service.

Jelastic Cloud

Web hosting tailored to your chosen technologies

Jelastic Cloud allows you to create custom development environments with the technologies of your choice (PHP, Java, Docker, Ruby, etc.). It is a flexible cloud offering:

• Horizontal and vertical scaling of resources.
• Payment based on actual resource consumption.
• Easy customization of your infrastructure (redundancy, IP, SSL, load balancing, etc.).

This guide explains how to replace the main domain name associated with a Website hosted on Infomaniak in case you want to, for example, change the name of your activity or modify the spelling.

Preamble

• It is not possible to simply change the spelling of the domain name in question.
• You must own the new domain name and install it in place of the current one by performing a swap (read below).
• You can also rename your Web Hosting product in the Infomaniak Manager but changing the name of a hosting service has strictly no impact on the URLs of the sites.
• You need to act on the domain name and, if necessary, adapt the content of the site.

Change the website's domain name

Prerequisites

• Prepare the new domain name (if necessary you need to buy it).
• If the change you are looking for is more of a "subdomain" to "main domain" type (dev.domain.xyz → domain.xyz for example) then refer to this other guide.

To replace the domain name assigned to the site with another domain name:

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the concerned product:
   
3. Then click on the chevron ‍ to expand the Domains section of this site:
   
4. Refer to this other guide to link the new domain name to your site (read the prerequisites carefully):
   • It is this new linked domain that will replace the current primary domain name after the inversion you will perform below.
5. Once the new domain name is linked to your site, click on the action menu ⋮ to the right of it.
6. Choose Set as primary domain:
   
7. If necessary, delete the old domain name and its variants that have become alias domains alias (and no longer primary domains).

If you are using a SSL certificate, you will need to update it to include the added aliases.

If you are using the dedicated IP option, you will need to uninstall and reinstall it after performing the swap.

Adapt the site content to the new name

In some cases, the web application used to develop the site needs to be adjusted to work with the new domain name. Click on the link corresponding to the development of your site to adapt the content:

• WordPress
• Joomla
• Prestashop
• application offered in WordPress & Apps

This guide details the validity rules for SSL EV and DV certificates (effective as of September 1, 2020).

Validity period of SSL certificates

Following a meeting of the CA/B Forum, which brings together major web players (Safari, Google Chrome, Mozilla Firefox, etc. - learn more), it was decided to set the maximum validity period of SSL certificates to 397 days. This change aims, among other things, to limit the risk of certificate hacking and to increase the level of security of certificates. It is not excluded that the maximum validity period of a certificate may be further reduced in the coming years. Some players like Apple, Google or even Sectigo are pushing in this direction.

Sectigo DV SSL Certificates

The SSL DV certificates from Sectigo with a duration of more than 1 year are automatically renewed by Infomaniak (certificate reissued during the month preceding its expiration date).

It is necessary to reinstall the certificate on your site if it is not managed by Infomaniak.

Sectigo EV SSL Certificates

The SSL EV certificates from Sectigo will need to be validated each year, regardless of the subscription duration chosen.

It is necessary to reinstall the certificate on your site if the latter is not managed by Infomaniak.

This guide helps you identify and correct errors encountered when attempting to use your email software/client such as Microsoft Outlook, Mozilla Thunderbird, Apple Mail, etc.

Always use…

• the single server name: mail.infomaniak.com (for IMAP reception and SMTP sending servers)
• the correct incoming/outgoing port numbers
• Authentication in the settings when it is offered, and if necessary, enter the username (your full email address) and password in the fields related to mandatory authentication
• the correct email password which is usually different from the username used to log in to Infomaniak (click here to check that you are using the correct password and if necessary, change the password of your email address) - beware of the sign $
• an existing email address that must have been actually created (or set as an alias)
• one protocol at a time (never check an email box with devices configured in POP3 for some and in IMAP for others because these two protocols do not work well together)

You must try to...

• compare the recommended settings for the email software/client used, especially if you have recently changed the password on the Infomaniak side
• check your emails using a different network (WiFi, mobile hotspot from 4G/5G, or any other internet connection)
• temporarily disable your security applications (antivirus, firewall, VPN...); if you can then retrieve your emails normally, contact the publisher of the security application(s) you are using
• type your password in plain text in a word processor; depending on your keyboard configuration, the key A may correspond to the letter Z and the key Q may refer to the letter A...
• Restart and try sending/receiving again: some applications require validating the configuration parameters window several times or need to be restarted to apply their new settings
• compose a new message after modifying your settings: a message in the process of being drafted that would be saved in the Drafts folder may not take into account any configuration changes

The types of errors

• 0x800... - refer to this other guide
• Certificate error (SSL or other): refer to this other guide
• 550 5.7.1 relaying denied or Proper authentication required - refer to this other guide
• 535 5.7.0 authentication failed - refer to this other guide

also:

• "573 Antispam: Authentication not possible. Please use port 587 instead of port 25."
  or "An operation on the server timed out. The server may be down, overloaded, or there may be too much net traffic."
  or "The time limit has expired" with an error number following (421, or 573 for example).
  Most ISPs (Internet Service Providers) have blocked the SMTP sending port n°25 for many years now. Therefore you should never specify port 25 as the SMTP port. To still be able to send emails, use the recommended ports.

This guide explains how to uninstall an SSL Certificate regardless of its type, initially installed from the Infomaniak Manager. If your certificate is a paid type and you wish to cancel the current offer instead, refer to this other guide.

Remove an SSL Certificate

To uninstall an Infomaniak certificate:

1. Click here to access the management of your product on the Manager Infomaniak (need help?).
2. Click directly on the name assigned to the product in question:
   
3. Click on the action menu ⋮ located to the right of the relevant item.
4. Click on Uninstall:
   
5. Confirm the uninstallation of the certificate.

This guide explains how to install a free SSL certificate from Let's Encrypt on a website hosted by Infomaniak.

Preamble

• Once the certificate is installed, your website will be accessible in http and https …
  • If necessary automatically redirect all your visitors to the secure https site.
• If you want to include an alias domain recently added to your site that already had a certificate, you need to update it.
• For multiple subdomains, refer to this other guide.
• Let's Encrypt limits certificate installation to:
  • 100 subdomains
  • 20 certificates for 7 days per registered domain
  • 5 failed requests per account per host name per hour

Install a free SSL certificate on a site

Prerequisites

• For the installation to be possible, the DNS of the domain name must be correctly configured to point to the site in question.
• If a change has recently been made at this level, some operations may not be functional immediately.

To access the websites to install an SSL certificate:

1. Click here to access the management of your product on the Infomaniak Manager (need help?).
2. Click directly on the name assigned to the product in question:
   
3. Click on Configure under SSL Certificate:
   
4. Click the Install certificate button:
   
5. Choose the free certificate.
6. Click on the Next button:
   
7. Check or select the relevant domains.
8. Click on the Install: button:
   
9. Wait until the certificate is obtained on the site.