• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 685
  • Last Modified:

Replace PKI-certificate

I have a website which uses a PKI-certificate. I can only connect to the website by using https.
Now the certificate is almost expired. Because of a name change I have had to request a brand new certificate for the same website.

How do I install this certificate?
Do I first have to uninstall the old certificate and then import the new one?

I'm new at this so my knowledge is pretty basic.
2 Solutions
ParanormasticCryptographic EngineerCommented:
The normally recommended method for doing this is to create a temp site and create the CSR from there (making sure to pay attention to the steps so you enter in the production site's name instead of the default value of the test site), process that to get your issued cert, install that cert to the temp site, then export it to .pfx file.  Then go to the production site and go into the server certificate wizard and select replace certificate from file and point to the .pfx file.  All of this is done within the site/page/etc. properties box - Directory Security tab - Server Certificate button.

Test it out and see if it works - you will likely need to restart IIS services and possibly reboot the server to clear the cached old certificate from use - I generally advise to just plan to do this next time you patch or need to reboot anyways and you should be fine.

If you have multiple certificates to request at once, do each from a new temp site so you are as likely to run into issues.
VicreaExpertAuthor Commented:
The certificate is replaced succesfully.

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now