What To Do If A Current SSL Certificate Expired
Most websites today are using an SSL/TSL certificate to provide a secure connection to the server even if they are not handling a lot of confidential information. This means that even blogs, social media sites and collections of photographs online are all behind a Secure Socket Layer.
The reason this is so important is really twofold and starts with understanding what is SSL. First, people in the general public using these sites are very aware of security issues online. They look for a gold padlock or a green padlock and tend to distrust sites without any type of security indicator.
Additionally, and this is also very relevant and important, the Google algorithms for search engine rankings look for a security layer as well. Sites with this feature are going to be found higher in the rankings because they are secure. This benefits Google as it becomes a more trusted search engine as the sites it lists on the results pages are also secure. This creates a cycle of repeat traffic, movement up the organic search engine rankings for the company, which is also ideal.
An SSL/TSL certificate is only approved by a CA (Certificate Authority) for a specific website with a specific domain owner at its most basic level. This is called a domain validated certificate. For higher levels of security that confirm the domain ownership and other information about the business or the person owning the site, there is the organization validated and the extended validated certificates.
The EV SSL is the highest level of security and includes the iconic green address bar. This is only available for corporations, businesses and other specific types of entities. It requires the most comprehensive validation and verification process and everything must be documented as accurate and current.
Each SSL certificate is only good for a specific amount of time. For the free SSL options offered by our competitors, this is as little as 30 days, while for ours it is a full 90-days from the day of application. The SSL file is generated in just minutes, so it can be installed and used immediately.
For all paid SSL/TSL certificates the person applying for the product will indicate the duration of the certificate. Depending on the type of SSL product this can be one, two or three years.
After this time is up, visitors to the website will find the SSL certificate expired. Actually, what they will notice is there is no SSL product on the site, so the padlock is gone as is the site seal.
If you have discovered the SSL certificate expired and you did not get the renewal email, we can still help you if you have a Comodo product. We have an automated system that will begin to contact all of our customers at about 60 days before the expiration date with information on how to renew and a convenient link.
Sometimes, due to email spam settings or other issues, these renewals are missed. If you have changed emails, you can still complete the renewals by logging into your account through the site and following the instructions.
For IT managers juggling multiple subdomains and main domains, we recommend using our CCM (Comodo Certificate Manager) utility. This is an automatic scan of the internal and external network to list all of your certificates by website, CA and expiry date. This can help to prevent any issues with an SSL certificate expired on your system.
To renew after discovering an SSL certificate expired, just generate a new CSR and provide your password. If you do not have your password, contact our staff via email and we can help to provide the information needed. You will need to use the email listed on the expired documentation.
Remember, when the SSL certificate expired it did so because the dates to cease functioning are coded into the SSL certificate. This means when you obtain the new or renewed SSL certificate you will need to install this in the system in order to activate. The information will always be displayed through the CCM or found by mousing over the TrustLogo site seal or the padlock and clicking through to view the certificate.
If you are considering a change in your CA, visit us on the web at https://ssl.comodo.com/. You can also use our free 90-day SSL certificate if you need more time to compare products, or give us a call at +1 888 266 6361 and we can help you to find the best match.