Forum Discussion
Go Daddy gd_bundle.crt
Hi,
One of our SSL certificates is due for renewal. For complicated reasons the management of our account with Go Daddy is maintained by another department. This department has requested and been provided with a new certificate for our domain (go.test.com for example) along with a gd_bundle.crt intermediate certificate bundle.
So, the request for a renewed certificate was not made from the LTM, rather via the Go Daddy website.
My question is, if a Go Daddy intermediate certificate bundle is already present on our LTM (expiry date not linked to the expiry date for the certificate assigned to go.test.com) , is there any need to replace the existing Go Daddy intermediate certificate bundle with the contents of the new gd_bundle.crt certificate?
If so, should the following process be sufficient to renew the certificate:
Via the LTM GUI select Local Traffic -> SSL Certificates -> go.test.com certificate -> Import -> Paste Text (paste the new certificate between BEGIN and END markers) -> Import
Thanks in advance!
- nitassEmployeeMy question is, if a Go Daddy intermediate certificate bundle is already present on our LTM (expiry date not linked to the expiry date for the certificate assigned to go.test.com) , is there any need to replace the existing Go Daddy intermediate certificate bundle with the contents of the new gd_bundle.crt certificate?sometime CA changes their intermediate certificate, so i think it had better check whether it is a new intermediate certificate or not. if not, you do not need to change your existing one.
- Ottimo_Massimo_NimbostratusHi Nitass,
- Ottimo_Massimo_NimbostratusShould probably mention, that the go.test.com certificate profile references chain GoDaddy_Intermediate_Certificate.crt which contains the first entry in the chain provided by gd_bundle.crt.
- nitassEmployeenowadays most CA uses two level intermediate certificates (two certificates in chain). i see there are 2 intermediate certificates and 1 root certificate in gd_bundle.crt. shouldn't your intermediate contain two certificates?
- Ottimo_Massimo_NimbostratusThat's a good question. I'm not 100% sure why this is the case. GoDaddy_Intermediate_Certificate.crt was created by somebody else and based on all the evidence seems to be working fine. I'll try to do some digging and get back to you.
- nitassEmployeeI'm not 100% sure why this is the case. GoDaddy_Intermediate_Certificate.crt was created by somebody else and based on all the evidence seems to be working fine.i understand it is working fine most of the time because intermediate certificates have been pre-installed on client machine i.e. they comes with operating system or software/patch update.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com