Reissuance

Overview

This process allows customers replace previously issued SSLClosed Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols that provide communication security over the Internet.[1] TLS and SSL encrypt the segments of network connections at the Application Layer for the Transport Layer, using asymmetric cryptography for key exchange, symmetric encryption for confidentiality, and message authentication codes for message integrity. Certificates. The following are examples of when reissuance would be relevant:

You cannot utilize reissuance in the following cases:

In the above cases, a brand new Certificate purchase is required. This is necessary because the existing Validation information for the original certificate is no longer valid, and the Validation process must be undertaken once again.

Reissuance Process

To reissue your SSL certificate:

  1. Log in to your Webnames.ca account.
  2. Navigate to My Account> Manage > SSL Certificates
  3. View the Issued certificates within your account , and click on the certificate name you wish to reissue
  4. Click the Reissue button
  •  Within the subsequent Reissue section, select the following as necessary:
  • Notice of Deprecation: Email Address for DCV SSL CertificateClosed SSL Certificates are created for a particular server and domain, and are issued by trusted, third-party Certificate Authority (CA) - comparable to your passport. As the Certification Authority, the SSL Certificate vendor authenticates the identity of the purchaser and verifies the business that owns the domain. Verification

    Please note this important change in the domain control validation (DCV) process for SSL/TLSClosed The Transport Layer Security protocol aims primarily to provide privacy and data integrity between two communicating computer applications.[1]:3 When secured by TLS, connections between a client (e.g., a web browser or email program) and a server (website or email server) are private (or secure), authenticated, and unaltered. certificates. Effective January 15, 2025, the use of email addresses obtained via WHOISClosed WHOIS (pronounced as the phrase who is) is a query and response protocol that is widely used for querying databases that store the registered users of domain names, for DCV will be deprecated. This change is in compliance with the CA/Browser Forum's Ballot SC-80v3, which mandates the discontinuation of WHOIS-based email DCV methods.

    Deprecation Date: Starting January 15, 2025, email addresses from WHOIS lookups will no longer be accepted for DCV.

    Alternative Methods: Constructed/generic email addresses (e.g. admin@ hostmaster@ etc) will continue to be available for use, however we recommend transitioning to alternative DCV methods such as DNSClosed The Domain Name System (DNS) is a hierarchical distributed naming system for computers, services, or any resource connected to the Internet or a private network. It associates various information with domain names assigned to each of the participating entities. A Domain Name Service resolves queries for these names into IP addresses for the purpose of locating computer services and devices worldwide. By providing a worldwide, distributed keyword-based redirection service, the Domain Name System is an essential component of the functionality of the Internet. TXT records.

    Existing Validations: Existing domain validations using WHOIS email addresses will remain valid until July 15, 2025, but must be re-validated using non-WHOIS methods before this date.

    Impact: Failure to re-validate domains using accepted methods will result in the inability to issue or renew SSL/TLS certificates.

    1. Click Submit to send the reissuance order to the certificate authority.
    2. Reissued certificates are then subject to the following steps, similar to that of a newly configured certificate: