Creating a Duplicate Certificate for a New Server

All DigiCert® Wildcard Plus™ and Unified Communications (UC) Certificates come with an unlimited server license. Having an unlimited server license means that you can use one certificate on as many different servers as you want without extra costs. To increase security and make it easier to install the certificates, you can create duplicate certificates in your DigiCert® Management Console.

To create a duplicate certificate, for each server, send us a new CSR so that we can create a new certificate for it. The details in the duplicate certificate will be exactly the same as the original certificate and will not/cannot revoke previous copies of your certificate.

Complete the following steps to duplicate a certificate:

  1. On the server for which you want the certificate, create a new CSR / keypair.

    For instructions on how to create a CSR, see Create a CSR (Certificate Signing Request).

  2. For the common name, enter the same name that was in the original certificate (or SANs if it is a UC certificate, see the instruction below).

    All of the other information (e.g. organization, locality, etc.) will be replaced with the information we collected during validation.

  3. Log into your account.
  4. On the My Orders tab, in the list of your current certificates, select the order number for the certificate that you want to duplicate.
  5. Scroll down and click Get a Duplicate.
  6. In the new window, copy and paste your new CSR, and then click Proceed to Step 2.
  7. Review the details and click Process now.
  8. The duplicate certificate should automatically be issued within a few minutes.

    To see your duplicate certificate, refresh your browser. The most recent duplicate certificate is located closest to the bottom of the page for this order inside your account.

  9. Download and install the certificate to your new server.

Requesting Duplicate Certificates with Subject Alternate Names (SANs)

By default, wildcard certificates only secure a specific subdomain level. For example, if your certificate is for *.domain.com, it will secure subdomains of the same level. You can replace the wildcard character with any subdomain as long as is does not contain any additional periods. In this example, *.domain.com would secure subdomains such as test.domain.com, six.domain.com, and www.domain.com but it would not secure a subdomain of a different level such as six.test.secure.domain.com.

To secure subdomains on different levels (for example, test.secure.domain.com and six.test.secure.domain.com), create a new CSR, log into your account, and request a duplicate certificate. When you request a duplicate certificate, you can specify up to 10 individual subdomains as SANS to secure. Getting duplicate certificates is free, and though only 10 subdomains are permitted per request, you can request as many duplicate certificates as you need. Requesting multiple duplicate certificates does not invalidate the first ones and allows you to secure 10 more subdomains. For example, you can use your first request to secure subdomains 1-10 and use your second request to secure subdomains 11-20.

Complete the following steps to duplicate a certificate with SANs:

  1. On the server for which you want the certificate, create a new CSR / keypair.

    For instructions on how to create a CSR, see Create a CSR (Certificate Signing Request).

  2. Log into your account.
  3. On the My Orders tab, in the list of your current certificates, select the order number for the certificate that you want to duplicate.
  4. Scroll down and click Get a Duplicate.
  5. In the new window, add the SAN names for up to 10 subdomains on the same domain that the wildcard certificate secures, and then click Proceed to Step 2.
  6. Review the details and click Process now.
  7. The duplicate certificate should automatically be issued within a few minutes.

    To see your duplicate certificate, refresh your browser. The most recent duplicate certificate is located closest to the bottom of the page for this order inside your account.

  8. Download and install the certificate to your new server.