Reissuing a certificate means the certificate is issued again, (well) before its expiration date. The expiration date of the certificate will remain the same after it has been reissued.
What is not Possible?
- It's not possible to change the expiration date, certificate type or domainname (CN) by reissuing it.
- It's not possible to reissue an email signature. The only solution here is to apply for a new signature.
What is Possible?
- Reissue a certificate based on the same data.
- Alter the company name and/or data that is registered in the certificate (not allowed for GlobalSign certificates).
- It is possible to change or add Subject Alternative Names (SAN's) to a multi-domain certificate (all brands). In this case you enter the current domains as well as the new domains. Only the newly added domains will be charged.
- Upgrade a SHA-1 certificate to a SHA-2 certificate.
- Create a new CSR
- Apply for a reissue by:
- Creating a new certificate application while logged into the account used to apply for the current certificate. The system will notice that the certificate has already been issued for your web server and process the application as a reissue.
- Log onto the Control Panel, find the certificate you wish to reissue and click the option Reissue.
- Install the new certificate.
Note: If you apply for a reissue within 90 days before expiration, we'll contact you to check whether you want to renew or reissue the certificate.
A certificate reissue is free of charge. In case of a multi-domain certificate, a reissue is free of charge as long as the number of (sub) domains included in the certificate remains the same. For adding additional (sub) domains to the certificate, the standard cost per domain for the remaining validity of the certificate will be charged.
- You have a Comodo multi-domain, valid for three years, in which three domains have been included.
- During the second year, you wish to have the certificate reissued and add one additional domain to the certificate. For including the fourth domain, you will receive a bill for the remaining 2 years the certificate will be valid.
There can be several reasons to reissue a certificate:
- The private key of your certificate is in the possession of an unauthorized party. To prevent abuse a reissue is advisable.
- You are switching to a new provider or server and it is not possible to export the certificate and private key from the old environment.
- You have lost your certificate, possibly because of a server crash.
- You want to change the data registered in the certificate, possibly because your company data has changed.
- You have a multi-domain, and want to add or change the domains included in it.
Note: When no certificate data is changed when reissuing, or with an upgrade from SHA-1 to SHA-2, the old certificate will not be revoked automatically. If you want to revoke the certificate, please send a request to email@example.com
Checks for a reissue
- For a reissue based on an new CSR a new domain validation will be performed.
- As long as the private key doesn't change when extending a multidomain certificate with a reissue, it won't be necessary to re-validate the current domains. Domain validation will only be done for the new domains. For safety reasons it's advisable to use new key material for a reissue.
- When adding extra domains to an EV certificates, all checks will be performed again.