Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Apache ssl cert

Posted on 2013-11-12
7
Medium Priority
?
287 Views
Last Modified: 2013-11-21
I am running apache http server 2.2. I need to renew the ssl cert but am unsure if I need to generate a new csr. Some sites indicate no others say yes. Hopefully someone can give me the correct answer. Thanks
0
Comment
Question by:Sid_F
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 13

Expert Comment

by:Ugo Mena
ID: 39642516
Some sites require you to submit a new CSR if you are changing the domain name or the sitename to something different. Some sites will allow you to renew from the old Certificate.

Best practice is to create a new CSR.
0
 
LVL 13

Expert Comment

by:Ugo Mena
ID: 39642517
once you get the new Certificate issued:

    -Copy your renewed certificate, intermediate certificate bundle and key file (generated when you created the Certificate Signing Request (CSR)) into the directory that you will be using to hold your certificates.

    -Open the Apache httpd.conf file and add the following directives:
        SSLCertificateFile /path to certificate file/your issued certificate
        SSLCertificateKeyFile /path to key file/your key file
        SSLCertificateChainFile /path to intermediate certificate/null
   
-Save your httpd.conf file and restart Apache.
0
 
LVL 6

Author Comment

by:Sid_F
ID: 39642786
I am not changing anything about the domain or site name. How do I know if I need a new csr based on the site
0
Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

 
LVL 13

Expert Comment

by:Ugo Mena
ID: 39642824
It will depend on who issued your Certificate and if you are renewing through the same place.

Where did you get your Certificate from?
0
 
LVL 6

Author Comment

by:Sid_F
ID: 39644252
Yes same place commodo
0
 
LVL 13

Accepted Solution

by:
Ugo Mena earned 2000 total points
ID: 39644836
Looks like Comodo CAN use the old CSR but this is their recommendation:

Can I use my old CSR?:

Some web servers will allow this, but we recommend (for security reasons) a new CSR for every renewal.

If you use the original CSR and someone has previously acquired the Private Key without your knowledge then you are still at risk of attacks during encrypted sessions.
If you use a new CSR then anyone possessing the Private Key looses the ability to decrypt your encrypted sessions when you apply the new certificate issued from the new CSR.
0
 
LVL 6

Author Closing Comment

by:Sid_F
ID: 39666242
Thanks
0

Featured Post

ATEN's HDBaseT Presentation at InfoComm 2017

Hear ATEN Product Manager YT Liang review HDBaseT technology, highlighting ATEN’s latest solutions as they relate to real-world applications during her presentation at the HDBaseT booth at InfoComm 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are running a LAMP infrastructure, this little code snippet is very helpful if you are serving lots of HTML, JavaScript and CSS-related information. The mod_deflate module, which is part of the Apache 2.2 application, provides the DEFLATE…
If you've heard about htaccess and it sounds like it does what you want, but you're not sure how it works... well, you're in the right place. Read on. Some Basics #1. It's a file and its filename is .htaccess (yes, with a dot in the front). #…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
In this video, Percona Solution Engineer Dimitri Vanoverbeke discusses why you want to use at least three nodes in a database cluster. To discuss how Percona Consulting can help with your design and architecture needs for your database and infras…
Suggested Courses

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question