We have a wildcard SSL certificate that is due to expire in a few weeks. I currently have this certificate installed on six servers. I'd like to renew it on one server first, test it out, and then install the cert on the other servers later. But I'm a little worried that renewing the certificate will cause it to immediately stop working on the other servers. I don't think this is the case, but when I asked GoDaddy support about it, they said "the certificates on the other servers will stop working once the new one is generated". Is that right? I called them back and spoke with a different tech and got a different answer. So who's right?
By the way, I plan to generate a new CSR rather than renewing the existing cert due to this known bug in IIS 7: http://support.microsoft.com/kb/971832
Thanks
Best Answer
Typically generating/renewing a certificate with a subject identical to an existing cert will not result in any previously issued certificates becoming invalid.
A certificate only becomes invalidated if the CA performs a special step to list the CRL, or configures their OCSP system to report it as revoked.