I like to extend my commitment for important undertakings and make advanced payments for multiple years.
Unfortunately, I discovered that renewing an SSL certificate 5 months prior to its expiration is not feasible.
Additionally, it is impossible to generate a second Comodo certificate for a single .com domain.
Is it permissible to obtain two distinct SSL certificates from different providers, such as DomainSSL and AlfaSSL, for instance?
Is there any rule against purchasing multiple SSL certificates from various vendors? You could even buy ten if you have the funds available. But what's the use of doing so?
Perhaps it could be beneficial to have multiple SSL certificates at the same time, as the writer mentions in their postscript. They reveal they possess certificates from two different vendors and can swap between them with ease. This highlights the fact that having multiple SSL certificates can provide flexibility and convenience.
Quote from: SIROTA on Sep 30, 2022, 04:37 AMWhat for?
Above it says. Renew and forget about it.
The domain is paid for seven years. The server is paid for several years in advance.
It doesn't work that way with ssl.
Quote from: wwwmaster@ on Sep 30, 2022, 07:39 AMIt doesn't work that way with ssl.
You can pay for 7 or 10 years, but every year you have to re-issue it...
I guess it's possible you can set it up somehow, but free reissue every three months...
Quote from: wwwmaster@ on Sep 30, 2022, 07:39 AMIt doesn't work that way with ssl.
It doesn't work that way, not because you "feel like it", but for security reasons, which is what encryption is for.
And, in general, it is too naive in this world to buy something for 7 years. :-[
You can have 2 certificates if you don't have a CAA (https://letsencrypt.org/docs/caa/) record in the DNS.
So it seems that they abolished the issuance of certificates for more than a year, before I remember were ssl for 3 years with me, now went to the free.
Cheap and sulfuric.
Thanks, guys.
Anyway, got it. I can pay for 7-10 years, but every year I will have to reinstall the regenerated certificate. With the reinstallation of the issue will be resolved in the control panel.
If I get the confirmation from the technical support about this possibility, I will run the Let's Encrypt bot for fun. :D
Well, in general, the topic is now clear and understandable. :)
wwwmaster@Here, I received a letter from Cloudflare, which I hasten to share. :)
The letter claims that Google, in parallel with the current, only updated certificate, created another one.
Well, it did, and it did.
Our Google takes care of us and now we do not need to fool around with the second certificate. :)
Guglo-flare 2022-10-03 222844.png
I wonder what the hell? :o
An SSL certificate can encompass a range of different names under the SAN (Subject Alternative Name) field upon creation of a certificate request. However, once the certificate has been issued, no changes can be made to it.
Combining two certificates into one file is unnecessary in most cases, as they are automatically combined when verifying the certificate's accuracy. This requires the certificate and all CA certificates issued up to the root one to be contained within the same file.
While the writer is unsure how Let's Encrypt handles this process, they state that ordinary CAs indicate support for SAN and allow users to customize their own CA. It is important to understand how to correctly implement SAN for your SSL certificates to ensure secure and reliable communication.
When it comes to renewing SSL certificates, there are certain constraints that must be considered. The maximum validity period for SSL certificates, as set by certificate authorities, is typically 27 months. This includes the remaining validity period of the current certificate. As a result, attempting to renew an SSL certificate 5 months prior to its expiration may not be feasible within these limitations.
In regard to obtaining two distinct SSL certificates from different providers for a single domain, it's important to delve into the potential complexities that may arise. While it is technically possible, managing and configuring multiple SSL certificates for the same domain can be intricate. Compatibility issues with web servers may also surface, as some servers may not support multiple SSL certificates for a single domain.
In light of these complexities, it may be worth exploring a wildcard SSL certificate as an alternative. A wildcard certificate can secure the main domain as well as all its subdomains, streamlining the management of SSL certificates for your domain.
While it's technically possible to obtain two distinct SSL certificates from different providers, it's not a recommended practice. This is because it can create confusion for users and potentially lead to mixed content warnings in browsers. Instead, it's recommended to renew your SSL certificate with the same provider or switch to a different provider that offers a seamless renewal process.
There is no problem with having two SSL certificates for one domain. This is useful for various use cases, such as EV SSL and wildcard SSL, or for separating certificates for load balancers. Make sure that the server configuration is correct in order to avoid conflicts and security risks.