I have a wildcard SSL certificate for several Windows servers and I'm using IIS for binding. If I renew this certificate, will it automatically update on all the servers, or do I need to do something on each one? Also, is it worth it to renew the certificate using PowerShell or command line? If I just renew the cert, do I need to redo the bindings in IIS? I apologize for asking so many questions!
2 Answers
Just to clarify, if you renew the wildcard SSL cert on one server, it won’t automatically change on the others, even if they share the same thumbprint. They are separate installations, so make sure to pilot it properly if you're testing any changes.
Unfortunately, renewing the certificate doesn't automatically update it on each server. Even if you deploy it to the certificate store, you usually have to take extra steps within each application, like IIS. For IIS, that means you'll need to re-bind the certificate. It might help to clean up the old certificates as well, so you don’t get nagged by monitoring tools. Also, consider restarting the services after the renewal to make sure everything’s working smoothly.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures