Reselling SSL certificates
Reselling through BILLmanager 5
To resell SSL certificates through BILLmanager 5, you need to configure integration with the billing platform and import tariff plans.
Integration setup
You can set up integration by creating a service processing module in BILLmanager, Integration → Service processing modules → Create:
- Select the Product type. For reselling SSL certificates, select “SSL certificate”
- Select “BILLmanager” as the Processing module.
- At the Integration setup step, enter the details required for integration with BILLmanager.
- In the URL field, enter the ISPsystem BILLmanager address: https://api.ispsystem.com.
In the Username field, enter the account name in the billing system.
Note
Use a different account in the selling BILLmanager for each reselling BILLmanager. Otherwise, the interaction between billing systems may be disrupted.
- In the Password field, enter the account password in the billing system. Press Continue.
- At the Service processing module parameters, configure the service processing module parameters.
Importing tariff plans
To import tariff plans, enter Products → Tariff plans → Import
- Select the processing module created at the integration stage.
- Select the Product type for reselling and its Tariff plan. Specify the Provider.
After importing tariff plans, you can edit their name and cost. To start reselling, enable the tariff plans under Products → Tariff plans → Enable.
Reselling SSL certificates via API
This article contains API requests that allow you to order a license at https://eu.ispsystem.com and perform available actions with it.
API address of ISPsystem billing system: https://api.ispsystem.com.
Authorization in the system is performed with the authinfo parameter, which assumes the value: authinfo=user:passwd.
user — user name in the https://eu.ispsystem.com billing system;
passwd — user password.
Ordering a certificate
Order is performed by means of the certificate.order.param function, which assumes the following parameters:
ip — IP address for which the certificate will be ordered.
period — order period. Order period of 1 month is available, accordingly, the parameter assumes the value of period=1.
pricelist — tariff plan code.
remoteid — the id of the service in the reselling billing.
| Name | Id |
|---|---|
| EV SSL | pricelist=55330 |
| OrganizationSSL WildCard | pricelist=55329 |
| OrganizationSSL | pricelist=55328 |
| Domain ServerSign Wildcard | pricelist=55327 |
| Domain ServerSign | pricelist=55326 |
| AlphaSSL Wildcard | pricelist=55325 |
| AlphaSSL | pricelist=55324 |
| Comodo EV SSL certificate | pricelist=55153 |
| GeoTrust True BusinessID Multi Domain (5 domains included) | pricelist=27652 |
| GeoTrust True BusinessID with EV Multi Domain (5 domains includedв) | pricelist=27651 |
| Comodo PositiveSSL Wildcard | pricelist=27650 |
| Comodo PositiveSSL Multi Domain Wildcard (3 domains included) | pricelist=27649 |
| Comodo PositiveSSL Multi Domain (3 domains included) | pricelist=27648 |
| Comodo Positive SSL | pricelist=3033 |
| Comodo Premium WildCard | pricelist=2028 |
| Comodo Essential SSL WildCard | pricelist=2027 |
| Comodo Instant SSL | pricelist=2026 |
| Comodo Essential SSL | pricelist=2025 |
| Symantec Secure Site Pro with EV | pricelist=2024 |
| Symantec Secure Site with EV | pricelist=2023 |
| Symantec Secure Site Pro | pricelist=2022 |
| Symantec Secure Site | pricelist=2021 |
| Geotrust True BusinessID WildCard | pricelist=2020 |
| Geotrust True BusinessID | pricelist=2019 |
| Geotrust Quick SSL Premium | pricelist=2018 |
| Thawte SSL Web Server with EV | pricelist=2015 |
| Thawte SSL Wildcard | pricelist=2014 |
| Thawte SSL Web Server | pricelist=2012 |
| GeoTrust True BusinessID with EV | pricelist=1032 |
| Thawte SSL123 | pricelist=1013 |
| RapidSSL Wildcard | pricelist=1012 |
| RapidSSL | pricelist=1011 |
Пример вызова функции
func=certificate.order.param&remoteid={ID service}&CN=example.com&L=Moscow&O=Moscow&OU=&ST=Moscow&adm_email=test@test.com&adm_fname=Test&adm_jtitle=Test&adm_lname=Test&adm_phone=+7 (111) 111-11-11&adm_phone_country=182&approver_email_1=admin@example.com&approver_method=auth_email&auth_file_protocol=off&clicked_button=next&country=182&crt_type=generate&csr=
&delete_private_key=off&domain_count=&emailAddress=&field_country=182&hfields=csr&hide_csr_fields=&itemtype=&key=
&like_admin=on&newbasket=&org_address=1&org_city=Moscow&org_country=182&org_department=1&org_name=Test&org_phone=+7 (111) 111-11-11&org_phone_country=182&org_postcode=1111111&org_state=Moscow&period=12&pricelist=115&tech_email=test@test.com&tech_fname=Test&tech_jtitle=Test&tech_lname=Test&tech_phone=+7 (111) 111-11-11&tech_phone_country=182Reissuing certificate
SSL certificate reissue is performed with the certificate.reissue function. The elid parameter defines the certificate to be reissued
Reissuing based on previous data:
Example of function call
func=certificate.reissue.step2&elid={certificateID}&crt_type=oldrequest&approver_method=auth_email&sok=ok&approver_email_1={main domain confirmation email}&approver_email_{i}={additional domain confirmation email}approver_email_{domain index} - used to specify email when reissuing a certificate with additional domains. The index of the main domain is 1; for additional domains, the index starts with 2.
In case of crt_type=oldrequest reissue, the index order for approver_email is determined based on the order of additional domains in the altname node received in the func=certificate.edit&elid={certificateID} query response.
Reissue with indication of the new CSR:
Example of function call
func=certificate.reissue.step2&elid={certificate ID}&crt_type=manual&approver_method=auth_email&sok=ok&csr={urlencoded CSR}&approver_email_1={main domain confirmation email}&approver_email_{i}={additional domain confirmation email}approver_email_{domain index} - used to specify email when reissuing a certificate with additional domains. The index of the main domain is 1; for additional domains, the index starts with 2.
In case of crt_type= manual reissue, the index order for approver_email is determined based on the order of additional domains in the altname node received in the func=certificate.edit&elid={certificateID} query response.
Reissue with indication of new domains:
Example of function call
func=certificate.reissue.step2&elid={certificate ID}&crt_type=altname&approver_method=auth_email&sok=ok&altname={urlencoded space separated list of additional domains}&approver_email_1={main domain confirmation email}&approver_email_{i}={additional domain confirmation email}approver_email_{domain index} - used to specify email when reissuing a certificate with additional domains. The index of the main domain is 1; for additional domains, the index starts with 2.
When reissuing with indication of new domains crt_type=altname, the index for approver_email is defined by the position of the additional domain in the altname parameter. For example, if altnames=ex1.com ex2.com, then approver_email_2 — confirmation email for ex1.com, approver_email_3 —confirmation email for ex2.com).
Deleting a certificate
The certificate is deleted using the certificate.delete function. The elid parameter specifies the certificate to be deleted.
Example of function call
https://api.ispmanager.com/manager/billmgr?authinfo=USER:PASSWD&out=xml&func=certificate.delete&elid={certificate ID}&sok=ok