How can I renew SSL on IIS7 with No Downtime?

ssl iis-7 iis

Generating a new CSR has no effect on the current certs. They will still be bound to the site and continue to be valid until they expire, or until you replace them with the new one.


This used to be an issue with IIS 6 but there is no risk of downtime with IIs 7. Just generate a new CSR, install it, and when you are ready to switch to the new certificate, change the site bindings. IIS will continue using the old certificate until you change the bindings.

Also, the extremely large CSR is generated from a bug in the IIs 7 renew process. You will just want to create a new CSR rather than using the Renew option.

Related

Alternate to /etc/hosts
Ubuntu mail server switch to Postfix from Sendmail
Will Power Edge Servers and Cisco Routers Power on when given power?
Pagefile size on a server with tons of RAM
Ignoring GET parameters in Varnish VCL
Prevent SMTP Connections From Outside Localhost
Remote backup via SSH
ERR_INVALID_CHUNKED_ENCODING from Chrome
System went read-only suddenly
Why cmder does not import the user path variables?
Jenkins Docker image has no make or sudo
What is the IPv6 equivalent of 192.168.xxx.xxx? [duplicate]