In the last year, my organization has changed the way we get certificates from Verisign. I can no longer renew my existing certificates, instead I must replace them. (Our organization's name changed slightly.)
I have a web site in which the SSL cannot go off line for an extended period of time. (It often takes my PKI admin a day or two to process a cert request.)
How can I generate a new CSR for this web site and process it without taking the current SSL certificate offline?
This is a Windows 2003 server running IIS 6.