On Jun 4, 2019, at 4:00 PM, Pete Helgren <pete@xxxxxxxxxx> wrote:
Is all of this done in DCM or are you dealing with a different web server and security provider (like OpenSSL or using java keytool). To renew a certificate, you really don't need a new keypair unless you are changing something about certificate. The CSR just validates that you are who you say you are....but if DCM generated the CSR and NameCheap used it, then importing the cert shouldn't be an issue. Perhaps NameCheap isn't a CA in the certificate store? If not, you'll need to import it.
GIAC Secure Software Programmer-Java
Twitter - Sys_i_Geek IBM_i_Geek
On 6/4/2019 2:19 PM, Jon Paris wrote:
I already have a cert applied but it is expiring.
Selected to renew it.
Chose to generate a new key pair.
Used the data to request the new key.
Got cert and attempted to apply. Keep getting a message that there is no such certificate in the store.
Question for those of you who understand all this. Could this be caused because the new cert is not issued by the same authority as the previous one? Original was from Comodo - new one from NameCheap - but the underlying ceret is still from Comodo.
If that is the case, can I still use the certificate that I have for a new entry?
This is the Web Enabling the IBM i (AS/400 and iSeries) (WEB400) mailing list
To post a message email: WEB400@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
or email: WEB400-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
As an Amazon Associate we earn from qualifying purchases.
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.