tags:

views:

324

answers:

2
+2  Q: 

Will public key change on renewing a certificate?

HI, When i renew an SSL certificate will the public key change or be the same as the expired certificate?

+2  A: 

If you re-use the same certificate request, the key will not change. If you generate a new request, that'll generate a new key.

If your certificate authority is not requiring a certificate request, then they must be re-using the old one.

derobert  2009-03-21 06:21:40
HI,We are running a webservice that has ssl. It was running without any probs. After the expiry date we renewed the certiicate with a new CSR. Since then the webservice is not working. It shows up some errors like "Could not establish secure channel SSL/TLS"
rahul  2009-03-21 06:30:15
Can we use the old CSR to renew a certificate or is it necessary to have a new CSR for certificate.
rahul  2009-03-21 06:32:10
Unless the CA objects, you can use the old one. I'm not sure *why* you'd want to, but you can.
derobert  2009-03-21 06:35:24
Sorry, Actually I do not hane mush knowledge about certificates and SSL. But we are facing this sort of problem. I heard that we have to use a new CSR for renewing a certificate also. So will it cause any problem when the client tries o connect to our webservice
rahul  2009-03-21 06:38:14
As long as you properly install the new key and certificate, your clients should not care. Unless you have some weird clients.
derobert  2009-03-21 06:41:10
Can you tell me what all things has to be done when renewing an expired certificate
rahul  2009-03-21 06:42:55
Also, since you're apparently responsible for maintaining this, you really should take some time to learn the basics of how it works.
derobert  2009-03-21 06:43:35
What exactly you have to do depends on the server — its documentation should tell you. And this is going /far/ off-topic here.
derobert  2009-03-21 06:44:25
+1  A: 

The certificate has nothing to do with the keys. Essentially the certificate is just a signature of your public key. You continue to reuse the same key (unless your old public key has an expiry date that's passed).

Adam Hawes  2009-03-21 06:22:35
HI,We are running a webservice that has ssl. It was running without any probs. After the expiry date we renewed the certiicate with a new CSR. Since then the webservice is not working. It shows up some errors like "Could not establish secure channel SSL/TLS"
rahul  2009-03-21 06:31:21
You probably didn't install the new private key. Is this really a programming question?
derobert  2009-03-21 06:36:15
No, this has nothing to do with programming.
rahul  2009-03-21 06:40:38

related questions

Converting a Java Keystore into PEM Format.
javax.net.ssl.SSLHandshakeException: certificate expired - Local or Remote?
microsoft certificate and ssl
How to assign a SSL Certificate to IIS7 Site from Command Prompt
why validity extended ca does not contain private key information?
What RSA key length should I use for my SSL certificates ?
why do we trust SSL certificates?
Is it possible to convert an SSL certificate from a .key file to a .pfx?
Using a self-signed certificate with .NET's HttpWebRequest/Response
Apache Name Virtual Host with SSL
What SSL certificate do I need?
Best SSL certificates provider?
invalid security certificate and domain names
How do I configure WinCE to use wildcard SSL certificates?
How to set read permission on the private key file of X.509 certificate from .NET
Server Rejecting Biztalk X.509 Certificates
How do you track hosting / domain / SSL certificate expiry dates for customers?
Connecting phpMyAdmin to a MySQL server over SSL
Apache reverse proxy set up SSL certificate
Do I need SSL Cert for simple community site?
Does the brand name matter for a SSL EV certificate?
How do I generate an SSL certicate?/ How to access a page with invalid certicate in FF3?
Who sells the cheapest EV SSL certificate?
When using keytool to generate a CSR file, does it have to be generated on the hosting server?