SSL certificate migration from one server to another

ssl migration certificate
28,411

Solution 1

In some cases it may be simply a matter of copying the keys to and changing apache configuration on the new server.

For example: http://www.digicert.com/ssl-support/apache-ssl-export.htm

Some certificate authorities may tie an SSL certificate to a specific server.

Solution 2

Essentially, you export SSL certificates from the server that they are currently installed on, move SSL certificates to the new server, and then import SSL certificates on the new server. But this only really only applies if you are sticking with the same certificate authority ("provider")... which it sounds by your question that you are not.

Keep in mind that even if you stick with the same provider, many require that you purchase a "server license" for each server that you install an SSL certificate to, even if it uses the same private key. And speaking of private keys, it is slightly less secure to copy the SSL certificate and use the same private key on a different server. If an attacker breaks into one server and gets the private key, he will be able to listen in on the connections that other servers are making.

So my advice to you since you want to switch providers is just purchase a new one all together with the new provider once you move to the new server... But maybe I'm misunderstanding your question.

Solution 3

First determine if the device installed with the certs are storing the private key in hardware/software. In most today's servers, they are in software *.key files (e.g. web server SSL). To be found near the key files are the certificate and perhaps even CSR. Moving these files to another server is generally allowed (Considering the destination server will have the same hostname) and hence keeping the same CA. Most CAs have no concern to customers who does that.

But if you are just looking to switch the service provider from one to another, simply ask current CA to 'revoke' the cert. Then start with the new Cert buying process with the new CA.

Share:
28,411
Paul
Author by

Paul

Updated on February 05, 2020

Comments

  • Paul
    Paul over 4 years

    What's necessary to migrate valid SSL certificate from one server and service provider to another?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Firefox: certificate is not trusted because the issuer certificate is unknown
FtpWebRequest "The remote certificate is invalid according to the validation procedure"
Connecting to MySQL server with ssl
Error while creating self-signed SSL certificate
OpenSSL Verify Peer (Client) Certificate in C++
iPhone: install certificate for SSL connection
need help Debugging SSL handshake in tomcat
WCF Exception - The client certificate is not provided
Cannot import certificate into java control panel
How to call the default certificate check when overriding ServicePointManager.ServerCertificateValidationCallback in C#?