What’s happening with my 1-year SSL Certificate?
Our SSL providers now limit the maximum validity of each certificate to 199 days. As a result, we are updating our processes. The order process for 1-year SSL certificates remains the same. The change affects only the certificate validity period and we are adding automation to ensure your certificates stay active without any extra effort.
Let's take a deeper look at this:
Changes and Impact
1. What is changing?
When you buy a 1-year SSL, the certificate will be issued for 199 days instead of a full year. It needs to be reissued to cover the rest of the year.
2. What is not changing?
Your SSL certificate will stay at the same price. You will still buy a 1-year SSL certificate and get a full year of SSL protection. We will just reissue mid-year to provide with the provider's new 199 day rule. We will remind and support you with renewal reminders and there is no changes to your hosting product, just the SSL certificate.
3. Why is the validity now 199 days?
Our SSL provider is enforcing a shorter maximum certificate period. We will reissue your SSL certificate during your 1 year term after CNR submission.
Ordering and Reissue Process
4. How will my 1-year SSL order work from now on?
1. Place your 1-year SSL Order.
2. We issue the first certificate with 199 days validity.
3. We notify you ahead of expiry to prepare you for your CSR (Certificate Signing Request).
4. You upload the CSR using instructions on configuration page.
5. We issue your new certificate and notify you when it’s ready.
6. Your SSL coverage continues for the full year without any interruptions.
Thus, we will notify and ask for your CSR when we need to create the follow-up SSL order and provide your new certificate when ready to ensure that you are covered for the full year for your 1-year SSL certificate.
5. What do I need to do?
When we ask for your CSR, please upload your CSR promptly.
We will send reminders at 30 days, 15 days, 3 days and 1 day (if it has not been reissued before) before your current certificate's expiry.
Please note: If your web server or control panel can generate a CSR (e.g. cPanel, Plesk, IIS or Nginx), you may use that and upload it. Please also follow CSR Submission guide and template.
6. Will I be charged again for the mid-year reissue?
No. The reissue is included in your 1-year purchase. The system creates a $0 (free) reissue order about 30 days before the certificate expires. We just require your CSR submission as an approval.
Managing Certificates
7. Where can I view my current SSL Certificates and their expiry dates?
You can view your SSL certificates in the Client Area. The page includes 2 sections which will help you keep track of the 199-day cycle and upcoming expiries:
1. Active Products/Services
This section displays all of your active products including SSL certificates. You will have notification in case some of your SSL certificates are due to expire soon.
2. View Details
Here you can find the status and expiry date of the SSL certificate along with the notification if the certificate requires re-issue.
8. What notifications will I receive?
You will receive the following notifications:
· Order Confirmation: Immediately after your 1-year purchase
· CSR Reminder: 30 days before expiry. Please get your CSR ready.
· CSR Reminder: 15 days before expiry. Please get your CSR ready.
· CSR Reminder: 3 days before expiry. Please get your CSR ready.
· CSR Reminder: 1daysbefore expiry. Please note this is your final preparation reminder.
In case of due re-issue follow-up notifications will not be sent.
· Certificate Ready: After validation/issuance, we’ll notify you your new certificate is available.
9. Do I need to change anything on my hosting?
No. Your hosting products remain the same.
CSR Guidance
10. I don't know what a CSR is - What is it and what should I do?
A CSR is a Certificate Signing Request, which is basically a small file generated on your server that helps create your SSL certificate. Use your control panel (e.g. cPanel/Plesk/IIS) to generate it or follow our CSR upload guide in the order requirements template you will receive.
You will need:
· Common Name (CN): your domain (e.g., www.example.com)
· Organization details (for OV/EV certificates)
· Key length: 2048-bit or higher
· Country/State/Locality matching your legal entity (OV/EV)
If you have any questions, our support team can guide you through the process.
11. What if I don't upload a CSR in time?
Your certificate may lapse at the end of its 199-day validity. We will keep reminding you, but won't be able to reissue a new certificate without a valid CSR.
If a lapse occurs, you can still upload a CSR afterwards and we'll reissue promptly, but your site may show a browser warning until the new certificate is installed.
Certificate Types and Changes
12. Does this affect DV, OV and EV certificates differently?
DV (Domain Validation) handles validation the fastest with validation done on domain control.
Meanwhile, OV (Organisation Validation) and EV (Extended Validation) may require organisation and identity validation. If your validation paperwork stays current, the mid-term reissue is typically faster. Please respond promptly to any validation requests.
13. What if I need to change domains, SANs or move servers?
Changing domains or SANs will often require a new CSR and may trigger validation again. If this happens, please tell us as early as possible.
Moving servers will require a new CSR on the new server and upload it at reissue time. We will prompt you during this process.
Lastly, for wildcard certificates, this is still supported, but please make sure your CSR uses a wildcard CN (e.g., *.example.com).
Policies and Best Practices
14. Can I cancel or get a refund?
Standard cancellation and refund policies apply to your purchase term. The $0 reissue is part of your term and is not billable separately.
15. Discover our recommended security best practices.
· Keep your private key secure and never share it.
· Use 2048-bit or stronger keys.
· Rotate keys if you suspect compromise and please contact our support team immediately.
· Maintain updated contact emails so you receive all reminders.
If you have any questions, please contact our support team who are always here to help.