Several questions about reissuing or reissuing SSL certificates are often asked to the SSL Indonesia team. For example, if I reissue, can I change the domain name? Or what is needed to reissue an SSL certificate?
Reissue SSL – Have you ever heard the term Reissue SSL? Reissue SSL has indeed become a new term at the end of 2022. This is because previously the issuance of SSL certificates could only be done in one year. Now there is a Multi Year SSL certificate, which you can buy with an SSL duration of several years.
Why we need to Reissue an SSL Certificate?
Usually reissue is done if the private key that has been used to issue an SSL certificate is lost or not saved. So you need to regenerate the CSR (Certificate Signing Request) and get the latest private key. This is why it is important to save your private key and CSR files when installing an SSL certificate on the server.
Regenerating the CSR means you have to delete the old certificate that has been installed and request the latest certificate which means it must be reissued.
The process of deleting an SSL certificate also depends on the server you are using. If you are using cPanel, then you need to enter the SSL / TLS Manager menu and select delete. Then when regenerating the CSR, don't forget to save the private key. After the CSR is obtained, you can contact the SSL Indonesia team for assistance with issuance and installation.
Can SSL Certificate Reissue Change CN?
CN (Common Name) or the protected domain name is usually registered when generating CSR. This domain name is very necessary for issuing SSL certificates.
Can you change the Common Name when reissuing? The SSL Indonesia Team strongly discourages this. Why? This will increase the configuration error and display the comment "The security certificate presented by this website was issued for a different website's address" or often found with the name certificate name mismatch error.
Replacing a Web Server Requires Reissuing the Certificate?
Just like when your private key is lost, when you change servers you must also reissue the SSL certificate. Why? Because each server has a different CSR when generated.
This is the function of the CSR with the private key that you get. The web browser will read the private key that you input when installing the SSL certificate that the certificate between the web browser and the server you are using is the same or matches
This is the reason why reissuing is required so that there is no mix match or error that causes the SSL certificate on your web browser to be unreadable, and your website cannot be accessed or with the statement "Website Not Secure"
What is Required When Reissuing?
As explained by the SSL Indonesia team at the beginning, that reissuing an SSL certificate can be done if you change the web server, or your private key is lost. Not because you want to change the domain name or DNS on the CSR.
The requirements for reissuing are the same as the initial SSL certificate issuance. You need to re-validate both the domain and organization validation. Those are some important notes related to reissuing an SSL certificate. If you experience any problems, you can contact the SSL Indonesia team to be assisted with the reissuance process.
Conclusion
Reissue SSL is the process of reissuing an SSL certificate on a website. Reissuing an SSL certificate replaces an expired or expired SSL certificate. Reissue SSL is usually used on SSL certificates purchased for more than one year. So for the following year there is no need to buy SSL again, just reissue it.
There are various types of SSL that you can get depending on the level of security according to your needs. For those of you who want to protect your website with a security padlock, you can choose a Multi Year SSL certificate.
Just pay in advance, then SSL will protect your website. Hey, even though you have ordered a multi-year, every year you need to reissue SSL. Easy enough, right?