# certificate:create

Last edited on 30 Jun 2025

## Permission Summary

Upload SSL certificates

## Required Permissions

To add a permission to a custom role, you must also add its required permissions.

For example, to add a non-read permission for a resource type, you must also add the read permission for that resource type.

The following permissions are required for `certificate:create`:

| Permission | Description |
|---|---|
| [`certificate:read`](../../certificate/read) | View SSL certificates |

## Associated Permissions

Associated permissions are not required, but they support full functionality of the permission they’re associated with.

For example, to create a Droplet, you need `droplet:create`. To tag a Droplet during creation, you additionally need `tag:create`, so `tag:create` is listed as an associated permission for `droplet:create`.

The following permissions are associated with `certificate:create`:

| Permission | Description |
|---|---|
| [`domain:read`](../../domain/read) | View domains and domain records |
| [`domain:update`](../../domain/update) | Modify domains and domain records |