Difference between SSL certificate renewal and new certificate installation.

Question

Hi Guys,&nbsp;
I need to renew a SSL certificate for a VIP. Should I generate a CSR and get a new certificate? or can I renew the old one?&nbsp;
Thanks,
Nilesh &nbsp;

youssef1 · Answer

Hi Nilesh,&nbsp;
you have 2 choices:&nbsp;

generate a new cert/key which involves generating a new key (And provide your CSR to your CA).&nbsp;

Or just renew you certificat which involves keeping your private key (And provide your CSR to your CA).&nbsp;

In both case you can Modify/Add attribute  (Common Name, SAN, ...).&nbsp;
But if you want to renewal your cert you need to generate a CSR à Unless if you delegate the creation of your certificate (private and public key) to your CA what I do not advise you.&nbsp;
regards&nbsp;

kevin_stewart · Answer

That generally depends on whether or not you want to keep the attributes of the current certificate (subject, issuer, ciphers, etc.). If you do, then it's easiest to simply renew the current certificate.

Forum Discussion

Difference between SSL certificate renewal and new certificate installation.

2 Replies

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Tenant image upgrade

Related Content

Re: Management Certificate

Automate Let's Encrypt Certificates on BIG-IP

Automating ACMEv2 Certificate Management on BIG-IP

My Security+ Certification Journey

Certifications for security professionals