DigiCert OV and EV TLS certificates include unlimited free duplicate issues. For enhanced security and ease of certificate installation across multiple servers, generate a new CSR and request a duplicate certificate for each server.
중요
The duplicate certificate process is an immediate issuance process. Make sure your OV or EV TLS certificate’s domain and organization validation are current. See, Complete validation before requesting a duplicate below.
Duplicate certificates never require DigiCert to revoke previous copies of your certificate.
By default, the details in the duplicate certificate will be the same as in the original or previous reissued certificate. You can rearrange and remove domains from your duplicate certificate but cannot add domains when requesting a duplicate.
If you need to add domains, reissue the certificate first. Then, use the duplicate process to remove and rearrange the domains on your duplicate certificate. For example, if the common name on your Basic OV certificate is *.example.com, and you need the duplicate to include the subdomains mail.example.com and subdomain.example.com, reissue the certificate and add the subdomains as subject alternative names.
To learn more about customizing your duplicate certificate, see our Flex certificates: Duplicate a TLS/SSL certificate instructions. Only flex certificates like our Basic OV and EV certificates support the customization process—learn more about Flex certificates.
The duplicate certificate process is an immediate issuance process. Therefore, you must complete the domain and organization validation before requesting the certificate.
Unlike reissues, duplicate certificates do not include a method for validating domains and organizations after submitting the request. If you need to complete domain or organization validation, reissue the certificate instead. See our Reissue a TLS/SSL certificate instructions.
The duplicate certificate process does not include a step where the verified contact can approve the order, which means that to request a duplicate EV TLS certificate, you must be a verified contact who can approve certificates for the organization on the certificate.
If you are not a verified contact who can approve certificate orders for the organization, reissue the certificate instead. Remember that before DigiCert can issue an EV TLS certificate, a verified contact who represents the organization on the certificate must approve the order. See our Reissue a TLS/SSL certificate instructions.
The DV certificate process does not include duplicate certificates. The domain validation for a DV certificate request only applies to issuing that specific certificate (new, reissue, or renewal). Each time you request a DV certificate, you must demonstrate control over the domains on that request.
To get a duplicate DV certificate, reissue your certificate instead. See our Reissue a TLS/SSL certificate instructions.
복제 인증서를 받으려면 다음 단계를 따릅니다.
Generate CSR
To duplicate an SSL/TLS certificate, you must generate a new CSR. For more information about creating a CSR, see the Create a CSR (Certificate Signing Request) knowledge base article.
In CertCentral go to the certificate’s Order # details page.
In the left menu, go to Certificates > Orders.
On the Orders page, select the Order # of the certificate you want to duplicate.
For CertCentral Subscription accounts:
In the left menu, go to My Digital Trust Products > Certificates.
On the Certificates page, select the Order # of the certificate you need to duplicate.
On the certificate's Order # details page, in the Certificate actions menu, select Request duplicate.
Fill out the Request Duplicate certificate form and update the certificate details as needed.
Add your CSR
Upload or paste your CSR in the form.
Certificate validity
By default, a duplicate expiration date matches the certificate you are duplicating.
Next, to Certificate details, you can select the pencil (edit icon) to modify the validity date if needed.
Signature hash
In the menu, you can select a different signature hash if needed.
Server platform
In the menu, select the server platform you will install the certificate on.
When ready, select Request duplicate.
On the certificate’s Order # details page, on the Certificate history tab, you will find your duplicate certificate with its unique certificate ID. You can download the duplicate certificate and specify the certificate format. To learn more about downloading a TLS certificate, see our Download a certificate from CertCentral instructions.
Note: We also email the duplicate to the certificate contact.
Install and configure the new certificate. For more information about installing your certificate, see our see our knowledge base article SSL Certificate Installation Instructions and Tutorials.