Reissue an SSL certificate

If you have lost the private key to your certificate or need to change details to your certificate signing request (CSR), you do not need to buy a new SSL. You can have your SSL certificate reissued.
Note: Reissue is not possible via API commands. 

Reissue portals

The domain name and initial contacts associated with the order are the details used for the new certificate. Login via the respective Certificate Authority (CA) end-user portal:
  • GeoTrust
  • Symantec
  • Thawte
  • Trustwave
  • Sectigo or DigiCert reissue through OpenSRS directly. Send us an email with the following details:
    the common name, supplier order ID, and CSR.
    Note: Please allow 1-3 business days for us to process these requests.

Required information

Reissues require the following details to access the portals:

GeoTrust
  • The fully qualified domain name or common name.
  • Supplier order ID. 
  • Administrator or technical email address.
Symantec
  • The fully qualified domain name or common name.
  • Supplier order ID. 
  • Administrator or technical email address.
Thawte
  • The fully qualified domain name or common name.
  • Supplier order ID. 
  • Administrator or technical email address.
Trustwave
  • The username and password or the order admin contact email.

Reissue Instructions

  1. Log in to the CA end-user portal. Enter the fully qualified domain name or supplier order ID, followed by either the admin or tech email. Provide the captcha and push Continue.
    GeoTrust_Login_Portal.jpg
  2. Select the Request access button for your order. 
    GeoTrust_Order_Select_Page.JPG
  3. Check your email and click on the vendor login URL. Click the Reissue certificate link in the top left menu of the portal.
    GeoTrust_Order_Management_Portal.jpg
  4. Scroll to the bottom of the page and select Continue.
    Reissue_Approval_Continue.jpg
  5. Choose SHA2 with a 256-bit digest from the hashing algorithm drop-down menu.
    GeoTrust_Hashing_Algorithm_Select.jpg
    Enter your CSR in the provided field. Review and agree to the subscriber agreement and push Submit.
    Note: The CSR can be the existing SHA1, SHA2, or a new CSR.
    GeoTrust_CSR_Submition_Page.jpg
  6. An approval email is sent to the domain approver email address when the reissue is submitted. Once approval completes, the Certificate Authority sends the fulfillment email to the tech contact email for the order.
    Note: Validation is performed via email, not DNS, nor file validation.  The approver email is the validation email listed in OpenSRS.

Back to top

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.