Renewing an SSL certificate

See this Knowledge Base article for information on purchasing a discounted SSL certificate through DiscountASP.NET

The following steps are necessary to renew your SSL certificate for your account.


 

1   Log in to Control Panel, navigate to the SSL manager and click the "Generate New CSR" button.

A CSR is a public key that we generate on your web server. It is used to validate specific information about the web server and your organization. The CSR is generated based on the Organization Information you provide in Cntrol Panel. The common name can effect on which type of certificate you can use. See the different types of common names below.

Common Name: www.example.com
If you wish to secure www.example.com, the Common Name is: www.example.com. With this type of common name https://www.example.com is secure, but https://example.com will cause a 'Common Name Doesn't Match' Popup Warning in most browsers.

Common Name: example.com
If you wish to secure example.com, then the Common Name is: example.com. With this type of common name https://example.com is secure, but https://www.example.com will cause 'Common Name Doesn't Match' warnings.

Common Name: subdomain.example.com
If you wish to secure a subdomain, such as secure.example.com, the Common Name is: secure.example.com. With this type of common name https://secure.example.com is secure, but https://example.com and https://www.example.com will cause 'Common Name Doesn't Match' warnings.

Common Name: *.example.com
If you wish to secure a wildcard that will work on any subdomain, such as order.example.com, the Common Name is: *.example.com. With this type of common name https://anysubdomain.example.com is secure, but https://example.com will cause 'Common Name Doesn't Match' warnings.


 

 

2   Send the CSR to the certificate authority

When your Organization Information is submitted, we will generate a CSR* and display it in the SSL manager, along with the pertinent web server information. If you obtain a certificate through us, we will transmit the CSR to the certificate authority when you click the "Click to purchase" link and complete the order. Simply select an "approver email contact" from the dropdown list and complete the "admin contact information." The email address you specify in the admin contact information section is where the certificate will be sent.

If you are using a third party certificate authority, copy the CSR from the text box (the CSR begins with -----BEGIN NEW CERTIFICATE REQUEST----- and ends with -----END NEW CERTIFICATE REQUEST-----) and provide it to your certificate authority in whatever manner they require.

NOTE: We suggest that you renew your SSL certificate as soon as you receive an SSL renewal notice from your SSL Authority.  Renewing your SSL certificate with the same SSL Authority will not reduce the life span of the SSL certificate.

If you are using a third party certificate, we strongly recommend the use of "single root" certificates for the widest possible browser compatibility. Single root certificates can be obtained from:

SSL certificates that are not "single root" may be susceptible to certain performance issues. If you choose to use a certificate issued by a company that is not in our recommended list, it is very important that you read this Knowledge Base article for details on potential problems related to some SSL certificates.

 

 

3   Wait for the email from certificate authority

A Domain Validated certificate will normally require that you click a link in the first email from the certificate authority to demonstrate that you have access to the domain used in the certificate. Once you do that, the certificate authority will send the certificate to you.

NOTE: While you are waiting for the new SSL certificate to arrive, the current SSL certificate installed on the server will not be removed until you install the new SSL certificate on your account.

 

 

4   Submit and finish!

Submit the SSL certificate that you received via the SSL manager. Simply copy the code from the email and paste it into the certificate field on the SSL Manager page. The certificate field is below the field containing the CSR.  Once your certificate is submitted, we will install it on your account.

Finally, test your web site using HTTPS with different browsers to ensure that the SSL installation is working properly.

 

Looking for added security? SiteLock scans your website to detect hacking, and SiteLock TrueShield provides a Web Application Firewall to block online threats. Protect your site today.