Educational ICT Virtualisation Specialist

Twitter LinkedIn E-mail
Precedence Technologies Ltd
Technology House, 36a Union Lane
Cambridge, CB4 1QB, United Kingdom
T: +44 (0)8456 446 800 / +44 (0)1223 359900
E: enquiries@precedence.co.uk
Reissue

Wiki Home

Tools

Jump To: Products > SSL > Reissue

Why reissue?

  • You wish to switch to SHA256 from SHA1 signatures
  • The machine on which your existing certificate is installed is corrupted, hacked, crashes or is physically destroyed.
  • The original certificate had the wrong server name on it (e.g. www.example.co.uk rather than secure.example.co.uk). Note that this does not apply if the wrong domain name was used (e.g. www.example.com rather than www.example.co.uk) unless your certificate was a fully-authenticated certificate and was issued less than 30 days ago.
  • You have ordered the certificate for the wrong software.
  • You are moving hosting companies and the old hosting company will not release the private key or password to you.
  • You have lost or forgotten the password which allows access to the certificate on your machine.
  • The original certificate has been otherwise lost, corrupted or rendered unusable.

How to reissue SSL certificates

N.B. Re-issuing a cert will revoke the existing cert within a couple of hours of issue, thus making the existing cert invalid. Therefore, you must update the certificate on all servers using it.

N.B. (2) Do NOT revoke the cert yourself before starting the reissue process. If you do, you will not be able to reissue the cert without manual intervention

  1. Generate a new CSR from a new private key. The new CSR must have the same details as the original
  2. Visit Thawte end-user portal
  3. Enter domain name
  4. Enter the email address used for the corporate contact or technical contact
  5. Enter the digits and click Continue
  6. Click Request access alongside the correct version of the certificate
  7. You will be sent an email with a link granting you access to the certificate management
  8. Click on Reissue Certificate on the left
  9. Change the certificate type to 'SHA256 cert and root' from the pull down menu
  10. Copy and paste the CSR into the Certificate Signing Request box
  11. When you are ready, tick I agree to this SSL Certificate Subscriber Agreement and click Submit
  12. For domain-validated certs the approval contact will be sent a new approval email. Click on the approval link in the email
  13. Click I approve on the approval page that opens
  14. Wait for the new certificate to be emailed
  15. Install as appropriate
© Copyright Precedence Technologies 1999-2024
Page last modified on May 15, 2017, at 01:43 PM by sborrill