Renew SSL certificate at StartSSL
Posted by Cătălin on Sun, 2 Feb 2014
Renew SSL certificate at StartSSL
In case you are approved for a certificate renewal here is how you do it:
- The web server SSL certificates from startssl
is free for class 1 and needs to be renewed every year. Two weeks
before SSL certificates expiration, you will receive an email
notification. But you need to validate your email first as email
validation only for 30 days.
(Go to control panel in www.startssl.com, click Authenticate, click validations Wizard, and click email validation). - You may also need to renew S/MIME authenticate certificate, which is
only valid for one year. If you fail to renew, you may not enter you
your account.
(Go to control panel in www.startssl.com, click Authenticate, click Certificate Wizards, and click renew S/MIME authenticate certificate). - Now you can renew your web server SSL.
Go to control panel in www.startssl.com, click Authenticate, click Certificate Wizards, and click Web Server SSL/TSL Certificate, following the instruction,
copy and save in ssl.key. run the following command
openssl rsa -in ssl.key -out ssl.key
You can also click Decrypt Private Key in Toolbox, which is identical to the above command. If you have a copy and paste error (for example I missed a dash - at the first line), you will get the following error message:"unable to load Private Key 15632:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:647: Expecting: ANY PRIVATE KEY"
In this case, you have to create a new certificate by either requesting revocation (which isn't free of charge) or use a different sub domain. - Click Retrieve Certificate in Toolbox to get ssl.crt
Click StartCom Root CA (PEM encoded) in StartCom CA Certificates (left menu) to get ca.pem;
Click Class 1 Intermediate Server CA in StartCom CA Certificates (left menu) to get sub.class1.server.ca.pem. - Install your ssl.key, ssl.crt, ca.pem and sub.class1.server.ca.pem in your web server ssl directory and restart your web server.
- To check your ssl in your web server, go to SSL checker and input your https website or left click your mouse in your browser with your https website, click more information and view certificate.
Archives
- May 2023 1
- April 2023 1
- March 2023 3
- January 2020 1
- November 2019 1
- September 2019 1
- April 2018 2
- February 2018 1
- January 2018 3
- December 2017 2
- November 2017 2
- October 2017 2
- September 2017 1
- July 2017 2
- June 2017 2
- May 2017 1
- March 2017 2
- February 2017 2
- January 2017 2
- November 2016 1
- October 2016 4
- August 2016 1
- April 2016 1
- June 2015 1
- May 2015 2
- April 2015 1
- December 2014 1
- October 2014 2
- September 2014 1
- July 2014 2
- June 2014 1
- March 2014 1
- February 2014 2
- January 2014 2
- December 2013 2
- October 2013 2
- September 2013 2
- July 2013 2
- June 2013 1
- March 2013 1
- February 2013 3
- January 2013 1
- December 2012 1
- November 2012 1
- September 2012 1
- August 2012 2
- April 2012 1
- August 2011 2
- July 2011 2
- January 2011 1
- October 2010 5
- August 2010 2
- July 2010 3
- May 2010 1
- April 2010 5
- March 2010 3
- February 2010 2