Generating A CRT For SSL Certificate Renewals

Posted on February 8, 2012 by Chris

Following on from my post at https://forlinux.co.uk/expertise/blog/2011/11/10/how-to-generate-a-csr-for-an-ssl-certificate/ you can also generate a new CSR (Certificate Signing Request) without having to fill out all of the company details all over again.

To do this you will require the existing certificate (.crt file) and key (.key file), if the certificate is correctly installed on your server then you should be able to find the location of these from your Apache configuration file.

Once you have those you can run the following command to generate a brand new CSR, for your certificate renewal.

openssl x509 -x509toreq -in existing-certificate-name.crt -out signing-request.csr -signkey existing-key-name.key

This will then give you a file outputed of signing-request.csr which you can use to purchase your certificate from your preferred SSL vendor.

Post to Digg Digg This Post Post to Reddit Post to Reddit Post to StumbleUpon Stumble This Post Post to Technorati Post to Technorati

This entry was posted in Managed Hosting. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>