globe showing Americas Diese Seite auf Deutsch anzeigen

 
Anleitung
  1. When a TLS/SSL certificate expires, an email is sent to the email address stored with the certificate 60, 30, 10 and 5 days before expiry with the request to renew the certificate.
  2. It is best to copy the serial number from the e-mail and use it to search for the certificate in the PKI frontend
  3. At the bottom of the page you find the "Renew" Button.

    warning ATTENTION:

    Due to the migration from QuoVadis to DigiCert, it is not longer possible to request or renew a certificate from QuoVadis.  The renew-button is greyed out.

    Instead you have to order a new certificate from DigiCert. (Profil starts with DC WebServer)

    To cancel renewal notifications you can revoke the old certificate after installing the new certificate

  4. Order a new certificate with "Request Certificate ...".

    It is not possible to order a so-called soft token via our PKI, but the button cannot be hidden. If you press this button, you will receive an error message that you are not authorized.


  5. From that point the procedure is identical to a new order. Select profile, upload csr and then Renew (instead of Request).
  6. For the further procedure, see "Obtaining a TLS/SSL certificate" and "Installing a TLS/SSL certificate"

    warning ATTENTION:

    The difference between renewing a certificate and obtaining a new certificate is that when renewing, the status "Replaced" is entered for the expiring certificate in the database and that from this point no more reminder emails are sent regarding the expiring certificate.