SSL CSR questions
- From: "Mel K." <Mel.K@xxxxxxxxxxx>
- Date: Tue, 13 Jan 2009 17:35:04 -0500
Hello:
From what I understand, once the SSL cert is issued, you must install it onthe specific IIS server that generated the CSR. That is because the private
key associated with the CSR is stored on the specific IIS server. But if
necessary, can't you export the private key used to generate the CSR and
then import it into another IIS server?
Let's say I generated the CSR on IIS-01 and before I received the SSL cert
back, IIS-01 started having some hardware problems and I decided to move all
my sites to IIS-02. Can't I export the private key from IIS-01 and then
import it into IIS-02? Then after I receive the SSL cert, I'd be able to
import it into IIS-02. Does this make sense?
Regarding SSL cert renewals, is it correct that if I don't have the private
key that was used to generate the original CSR, I can't perform a renewal?
So in that case I'd have to generate a new CSR and request a new SSL cert,
correct? If I'm running a small e-commerce site, would there be any major
issue with getting a new SSL cert versus renewing an existing SSL cert?
--
Thank you,
Mel K.
MCSA: M
.
- Follow-Ups:
- Re: SSL CSR questions
- From: Brian Komar \(MVP\)
- Re: SSL CSR questions
- Prev by Date: Re: Default file/folder security permissions for a new user
- Next by Date: Re: Default file/folder security permissions for a new user
- Previous by thread: Certificate attributes for Smart Card Logon
- Next by thread: Re: SSL CSR questions
- Index(es):
Relevant Pages
|
