Packetlove have provided service to generate certificate support Client Authentication Extended Key Usage (EKU)
Starting October 1, 2025, DigiCert public TLS certificates will no longer include the Client Authentication Extended Key Usage (EKU) by default.
This change aligns with Google Chrome’s root program requirements to enhance security and promote interoperability.
To generate a new wildcard SSL certificate with both Server Authentication and Client Authentication EKUs,
you will need to select the appropriate EKU option during the certificate request process in CertCentral. Here are the steps you can follow:
Create your Certificate Signing Request (CSR): Ensure your CSR includes the necessary information for your wildcard certificate.
For more information on creating a CSR, you can refer to Create a CSR.
2. Request a Certificate: In your CertCentral account, navigate to the Request a Certificate page.
Under Additional Certificate Options, select the option for both Server Authentication and Client Authentication EKUs.
3. Complete Domain Validation: Demonstrate control over the domains on your certificate order.
4. Submit your Certificate Request: Once all necessary information is provided, submit your request.
For more detailed guidance, you can refer to the following resources:
Extended key usage (EKU) options
Order an OV wildcard TLS/SSL certificate
In case need support and consult Please kindly contact to Packetlove Team
กลุ่มบริษัทใด หรือองค์กร ใดมีข้อสอบถาม หรือต้องการข้อมูลเพิ่มเติม สามารถติดต่อได้ที่
Mobile : (+66) 090-5564465 หรือ 083-0466318 หรือ 086-4150926 (08.30 น – 18.30 น)
Tel: 02-5199816 , Fax: 02-5199826
Support team : Support@packetlove.com
Line ID : @packetlove.com
Facebook : https://www.facebook.com/packetlovecom
Line ID: Golfreeze
Line ID: Winnie3135
Line ID: Yakumi56
LINE Official ID: @packetlove.com
เลขทะเบียนพาณิชย์ : 0105558157088
