Entrust Migration FAQs

General

How does this acquisition impact me?

All Entrust customers and partners will be migrated to Sectigo. Sectigo and Entrust are working together to provide tools and information to help you during the migration process. Entrust's ECS Public Trust capabilities and the ECS Partner Portal will be end-of-lifed on September 8, 2025.

Can we use Entrust interface to perform domain and organization verification for Sectigo?

Yes, this is absolutely possible today. We would like to refer you to the following link to get started: https://files.entrust.com/presentations/ecs-14-1-1-customer/index.html#/

Do I need to revalidate their domain(s) for their existing SSL.com/Entrust certificates?

You do not need to revalidate their domain(s) for currently active certificates validated by Entrust. When you transition over to the Sectigo CA, you will need to revalidate your domains.

Will I be able to continue requesting QSeal PSD2, QWAC PSD2, and other eIDAS related certificates with Sectigo?

Yes, You are able to acquire additional eIDAS certificates using this link: https://www.sectigo.com/eidas-products#signing-certs. If you have existing certificate inventory purchase through Entrust, your Entrust rep can provide you with coupon codes you can use to purchase new certificates at no cost on the Sectigo website.

Will I be able to continue requesting Document Signing certificates with Sectigo?

Yes, You are able to acquire additional Document Signing certificates using this link: https://www.sectigo.com/ssl-certificates-tls/document-signing-certificates. If you have existing certificate inventory purchase through Entrust, your Entrust rep can provide you with coupon codes you can use to purchase new certificates at no cost on the Sectigo website.

Where do I get support?

Entrust will continue to provide support for ECS. If there is an issue in the Sectigo Platform/SCM, we recommend getting in contact with Sectigo's support team. You can submit a ticket request with Sectigo support here: https://www.sectigo.com/support-ticket

Who to contact after September 8, 2025?

Email	[email protected]
Phone	(US) +1 (888) 256-2608 / (International) +1 (209) SECTIGO (732-8446)
Knowledge Base	Enterprise KB

What's changed for the better: You now have access to specialized support teams with experts dedicated to your customer type, faster response times through streamlined workflows, an expanded knowledge base with comprehensive guides, and proactive updates on services and best practices.

Will ECS be end-of-lifed? If so, when?

ECS for public trust certificate issuance and management is scheduled for end-of-life on September 8, 2025. Customer ECS accounts will need to be migrated to Sectigo prior to September 8, 2025.

How do I learn more about the details of the migration?

Sectigo will send out additional information prior to the migration date.

What Entrust products are affected by this acquisition?

The acquisition includes all public-facing certificates, such as SSL/TLS, S/MIME, Code Signing, Document Signing, eIDAS, and Verified Mark certificates. Private CA offerings are not included.

Will there be any differences to my certificate (appearance/functionality/etc.) if they are issued from Sectigo vs. Entrust?

No, there will be no difference between a certificate issued from Sectigo vs Entrust.

If we just renewed our certificate with SSL.com Root CA, will this remain till next year after renewal or will we have to go with Sectigo Root CA?

The SSL/TLS certificate issued from SSL.com will reamin active for the lifetime of the certificate. Renewing the certificate will be issued from a Sectigo CA.

Will I be able to continue requesting VMC certificates with Sectigo?

Yes, You are able to acquire additional VMC certificates using this link: https://www.sectigo.com/ssl-certificates-tls/verified-mark-certificates. If you have existing certificate inventory purchase through Entrust, your Entrust rep can provide you with coupon codes you can use to purchase new certificates at no cost on the Sectigo website.

At which point Sectigo representative will contact us to review what we have and provide recommendations?

If Sectigo and/or Entrust has not reached out to you for a discussion, we encourage customers and partners to reach out to Sectigo to schedule a call.

For customers, it is: [email protected]

For partners, it is: [email protected]

Will I continue to be able to receive Support via phone, email and chat?

Yes, you can continue to contact Sectigo Support (24/7) via Chat, Phone, and Webform.

To access our support resources for live chat, support numbers, please visit Sectigo's support page: https://www.sectigo.com/support

If you'd like to raise a support ticket directly, you can do so here: https://www.sectigo.com/support-ticket

Where can I find information about issuing Sectigo certificates in ECS?

Information about Sectigo ECS certificate issuance can be found in the detailed migration and setup guide here. This resource provides step-by-step instructions and insights to help you navigate the process smoothly.

Migration - ECS to SCM

What is being migrated to the Sectigo platform?

Your certiifcates, certificate keys, certificate metadata, admins, inventory, clients (organizations), and domains will be migrated from ECS to SCM.

Will I experience downtime when we manually migrate?

No, there is no downtime required to migrate to SCM. Sectigo’s migration process is designed to ensure a smooth and uninterrupted transition.

Will all of my clients (organizations) be migrated to Sectigo?

Yes, your clients (organizations) will be migrated over to SCM.

What is involved if I as a customer want to manually migrate to Sectigo’s platform?

For Entrust customers migrating to Sectigo Certificate Manager (SCM), the process involves a few simple steps:

Select Sectigo CA as your TLS Provider in ECS
Validate your organization(s) and domain(s)
Schedule a call with Sectigo’s account executives to work with sales engineers and onboarding team to transition at your pace.

Will I need to re-validate my domains when I migrate to Sectigo?

If the clients (organizations) in ECS is switched to Sectigo as the TLS provider, and is validated, then no, you will not need to re-validate when you migrate to Sectigo.

If the clients (organizations) in ECS is not switched to Sectigo as athe TLS provider, then yes, you will need to trigger validation after you migrate to Sectigo.

I have some certificates expiring soon, but I want to prepare for Sectigo. Once all my domains are validated can they switch back to SSL.com on ECS platform?

Sectigo wants to provide assistance on this matter, and we recommend moving to the Sectigo platform sooner rather than late to mitigate and future issues. Please reach out to a Sectigo sales representatives to start this process.

How long will I have access to ECS?

Access to the ECS will remain available until mid September 2025. However, after the migration date, ECS will be in read-only mode for all customers.

What are the keys dates again regarding the Automated Migration Tool?

June 9, 2025: Sectigo's Automate Migration Tool becomes available in ECS
September 8, 2025: ECS Public Trust End-of-Life.

Customers not migrated by EOL will be automatically moved to SCM.

Read-only access will remain for ECS accounts that complete migration until September 17, 2025.

Will I have visibility to all of my previous certificates from SSL.com and Entrust after I migrate?

Yes once you migrate, your SSL.com and Entrust certificates will be visible in Sectigo's platform (SCM).

Will all my domains be migrated to Sectigo?

Yes, your domains will be migrated over to SCM through the automated migration tool. However, you can migrate today if desired to get situated using SCM sooner.

When can we get access to the Sectigo platform?

You can get access to the Sectigo platform today. Please contact your Sectigo sales representative to get more details on how to procceed.

If we've completed DCV with Sectigo via ECS, will these domains be validated when I migrate to SCM?

Yes, if you have validated your domains with Sectigo in ECS, those domains will be valid in your SCM account when you migrate.

How long does it take to connect the Sectigo Platform/SCM to my CLM solution?

It takes a matter of minutes to connect your CLM solution to the Sectigo Platform/SCM. We recommend to contact your Sectigo sales representative to learn more about how to integrate your CLM solution to the Sectigo Platform.

Product

What automation capabilities does the Sectigo Portal have? Is there any information available?

Yes, We would recommend to get in contact with your Sectigo sales representatives to learn more on the automation capabilties the Sectigo Platform/SCM can offer. SCM offers robust automation options, including ACME, EST, SCEP, and REST API, that streamline certificate management across diverse environments.

Does Sectigo have a similar Entrust Scanner to scan our internal networks for non-Sectigo certificates and when they expire?

Yes, Sectigo provides various discovery's that can scan public or private networks.

I use Entrust’s Document Signing Services. How will Sectigo support this?

Sectigo offers document signing certificates as part of our portfolio. For questions about migrating, contact the Sectigo team.

Does Sectigo support ACME?

Yes, Sectigo supports the ability to issue certificates using the ACME Protocol.

Is Sectigo fully integrated with 3rd Party CLM Vendors?

Yes, Sectigo supports integration with 3rd Party CLM Vendors such as Venafi, KeyFactor, AppViewX, EverTrust, etc.