Re-Keying an SSL Certificate
Re-keying is the process of generating a new private key for your existing SSL. You cannot change the identifying information, such as organization or domain name, in the certificate details.
You should re-key your SSL certificate when you move your website to a new server, your server crashed, or you lost your private key. You also need to re-key to add or remove subject alternative names (SANs) in a UCC SSL. For information about working with SANs in a UCC SSL, see Adding or Dropping Subject Alternative Names from UCC Certificates.
When you re-key your certificate, you need to provide a certificate signing request (CSR) from your server. For more information, see Generating a Certificate Signing Request. The information in your CSR must be identical to the information from your existing certificate. If you need to change any information, such as organization details or the domain name, you must revoke the certificate in your account, purchase a new SSL credit, and complete the SSL request again.
NOTE: We automatically deactivate the previous certificate when we issue the new, re-keyed certificate. Please do not revoke unless you are certain you want to cancel the existing certificate. When you revoke, the SSL credit is canceled and you cannot re-key the certificate.
To Re-key an SSL Certificate
- Log in to your Account Manager.
- Click SSL Certificates.
- Next to the certificate you want to re-key, click Launch.
- In the Filters list, click Certificates.
- Click the common name for the certificate you want to re-key.
- Click Re-Key.
- There might be a step here, depending on hosted here/elsewhere.
- In CSR, paste your CSR text.
- Select a certificate issuing organization, and then click Re-Key.
- Select a Server type, and then click Download.
After the download completes, install the re-keyed certificate on your Web server. For more information, see Installing an SSL: Server Instructions. If you need to install the intermediate certificates, you can download them from therepository.
Generating a Certificate Signing Request (CSR)
Using the Right Issuing Organization for Your SSL
Retrieving Your SSL Site Seal Code
Recognizing Secure Certificates as Valid on Palm OS Devices
Protecting My Site Against the SSL Vulnerability in Debian GNU/Linux
Changing the Common Name of a Certificate
Your message was successfully sent.
There was an error in sending your message, please try again.
Have a question about the content of this article?