RSM require a subdomain to be created for the purpose of RSM InTime users logging into RSM InTime. Each of our clients have their own unique subdomain and SSL certificate where their version of RSM InTime can be accessed from. This allows you to have a URL of your choice, such as 'timesheets.youragency.co.uk'. It also allows your instance of RSM InTime login page to be branded with your logo (see image below). You can then use a URL link, embedded in your website, to direct the user to that sub domain (your version of RSM InTime).
Once you have chosen a subdomain name, you will need to request for your website provider to create the domain for you. Your website is then required to be protected with an SSL certificate.
Every RSM InTime system needs to be secured with an SSL certificate for security purposes, the support team at RSM would have previously needed to provide a CSR (Certificate Signing Request) to you so that an SSL could be ordered. When ordering the SSL certificate, the minimum duration we require is two years. When renewing, we require the certificates at least 7 days in advance of expiration.
We have now added functionality to the system to allow you to start and complete the SSL order process via the RSM InTime system. You will now see a new option within Admin Cog .PNG?version=1&modificationDate=1542191774000&cacheVersion=1&api=v2&width=20){kind=small}
> System > SSL Certificate
...
4. Once the above has been complete then please inform the support team of the completion by emailing - support@insupport.in-timetime@rsmuk.co.ukcom, they will then confirm completion of the installation and confirm when the certificate is live
...
All CAs perform one or more of these authentication checks, the result is certificates with a range of differing levels of quality. It is important to note that the more authentication checks performed the better the quality of the certificate. So make sure you determine exactly what authentication checks are performed before purchasing.
Implementation Process
1) RSM InTime Support creates an openSSL (-sha256)
2) RSM InTime Support sends details to the client with information containing: URL of RSM InTime site, Expiry date of current certificate, CSR attached (information in the CSR to be checked for errors) and finally the format in which the SSL must be created in.
...
Then return the SSL to Support@In-Time.co.uk for us to apply to the server we will host your RSM InTime subdomain on.
4) We apply the SSL for you, typically out of hours, after this has propagated (updated) worldwide (this can take up to 48hrs) your site will become/remain accessible and secure.
...
•The alternative is to purchase a certificate from a provider such as Thawte http://www.thawte.com/ or VeriSign (http://www.verisign.com/) whose certificates are registered with common internet browsers. Certificates which are registered on internet browsers do not prompt the user with the above warning messages.
Duration
The minimum duration required for the SSL is a minimum of two years.
SSL Certificate setup process
...
The most common use of certificates is for HTTPS-based web sites. A web browser validates that an SSL (Transport Layer Security) web server is authentic; so that the user can feel secure that their interaction with the web site has no eavesdroppers and that the web site is who it claims to be. This security is important for electronic commerce. In practice, a web site operator obtains a certificate by applying to a certificate provider with a certificate signing request. The certificate request is an electronic document that contains the web site name, contact email address, and company information. The certificate provider signs the request, thus producing a public certificate. This public certificate is served to any web browser that connects to the web site and proves to the web browser that the provider believed that the provider issued a certificate to the owner of the web site. Before issuing a certificate, the certificate provider will request the contact email address for the web site from a public domain name registrar, and check that published address against the email address supplied in the certificate request. Therefore, an https web site is only secure to the extent that the end user can be sure that the web site is operated by someone in contact with the person that registered the domain name.
Renewing your SSL
When renewing your SSL, we require the new certificate at least 7 days in advance of expiration.