FAQ on SSL Certificate

What is an SSL Certificate?

An SSL (Secure Sockets Layer) certificate is a digital certificate that encrypts the data transmitted between a website and its users, protecting sensitive information such as login details, credit card numbers, and personal data. SSL certificates validate the website’s identity and establish a secure connection, which is indicated by a padlock icon in the browser.

Do I Need a CSR to Renew My SSL Certificate?

Why a CSR is Typically Required for Renewal

For most SSL certificate renewals, you’ll need to generate a new Certificate Signing Request (CSR). This applies even if you renew the certificate before its expiration date. The CSR ensures your domain information is accurately verified, and it helps maintain up-to-date encryption practices by generating fresh keys.

Key Reasons for Requiring a New CSR

Security Compliance: Generating a new CSR with each renewal ensures the security of the SSL certificate by refreshing the associated encryption keys.
Updated Information: If there have been any changes in your organization or domain details, a new CSR will include this updated information for the renewed certificate.
Validation Requirements: For Organization Validated (OV) and Extended Validation (EV) certificates, a new CSR is often required to reconfirm the organization’s details for a high-assurance renewal.

Timing Your SSL Renewal and CSR Generation

GlobalSign SSL certificates can be renewed up to 90 days before expiration, allowing you to maintain continuous security without losing any remaining time on your current certificate. The new certificate’s start date is adjusted to prevent overlap.

⚠️ Important Note: Always generate a new CSR for SSL renewals to comply with security best practices. Reusing an old CSR may not meet current security standards and could delay the renewal process.

How Early Can I Renew My SSL Certificate?

GlobalSign allows SSL renewals up to 90 days before expiration. Early renewal ensures continuous protection without overlapping or losing time on your current certificate. However, the renewed certificate’s validity is limited to 397 days to comply with industry standards.

What is the Maximum Validity Period for SSL Certificates?

The maximum validity for SSL certificates is 397 days (approximately 13 months). This shorter validity is an industry standard designed to enhance security, as it requires more frequent updates of the encryption keys and CSR data.

Can I Use My SSL Certificate on Multiple Servers?

Yes, you can generally install the same SSL certificate on multiple servers, depending on your configuration and the type of certificate. For larger deployments, some users choose Wildcard or Multi-Domain SSL certificates to cover multiple subdomains or domains under a single certificate.