Link to home
Create AccountLog in
Avatar of bgrsyd
bgrsydFlag for Australia

asked on

How to UPDATE and existing valid UCC SSL certificate on Exchange 2019

I have added an additional SAN (sub domain) to an existing GoDaddy UCC SSL.  Added this to enable the Download Domain security feature in Exchange.

The certificate, without the new SAN, is already installed on an 2019 Exchange Server, everything works just fine.

My question is, 

To install this updated certificate, do I need to generate a new REQ and basically re-key it?  Exchange doesn't seem to allow the import of the updated key without first generating the REQ

Thanks,

Bruce

Avatar of David Johnson, CD
David Johnson, CD
Flag of Canada image

from godaddy
You cannot upgrade a UCC to include more names. If you are using all of the slots available in your current UCC certificate, and you need to cover another domain, you'll need to purchase a new certificate to add another domain name.
Avatar of bgrsyd

ASKER

Thanks David, I have not used up all my slots on the GoDaddy SSL, just added a new SAN to an empty one.  All the stuff with the certificate is complete and under control.  The issue is just with getting the update in Exchange, as per my question.
SOLUTION
Avatar of M A S
M A S
Flag of United States of America image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
ASKER CERTIFIED SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Avatar of bgrsyd

ASKER

Thank you all.

That clears it up, I guess it's obvious if the details of the certificate have changed it needs a re-key.