How can I get my certificate reissued?

Starting reissue process
Reissuing a PositiveSSL, EssentialSSL, PositiveSSL Wildcard, EssentialSSL Wildcard certificate
Reissuing any other SSL certificate
Additional information

Starting reissue process

To reissue your certificate:

  • Log in to your account.
  • Click on the top black bar with your email:
  • Click on the 'Active' button next to the purchased cert and choose ‘Reissue (new private key)’.

If you’re reissuing a PositiveSSL, EssentialSSL, PositiveSSL Wildcard, EssentialSSL Wildcard certificate:

Step 1. Reissue for

  • Verify that the domain name you wish to reissue the certificate for is correct.
    Note: You may change it by deleting the pre-filled domain tags and entering the new domain. Keep in mind that changing the common name of a Single-Domain and Wildcard certificates revokes the initial certificate.
  • Click ‘Onwards’.

Step 2. Save new key

  • You can download the key generated for the domain in your browser or submit a manually generated CSR.

Note: Both 'use browser to create files' and ' and 'create it on your server' options support IDNs with the following TLDs. Prefer pasting the IDN instead of typing to ensure further process goes smoothly.

To use the CSR generated in your browser:

  • Click on the ‘key’ button to save your private key generated for the entered domain.


  • Click ‘Almost there’ to proceed.

To use the CSR generated manually:

  • Click ‘create it on your server’.
  • Paste the generated CSR code to the ‘Paste CSR (command output)’ field. You may use one of the pre-generated commands that fit your server software (OpenSSL or Windows) to generate the CSR. Hover over the command and copy to use it on your server.
  • Click ‘Onwards’.


Step 3. Review


If you’re reissuing another SSL certificate:

Generate a brand new CSR/private key pair and save your private key for further installation.

If you are not able to generate a CSR yourself for some reason, please ask your web hosting provider to do this for you.

Once you have a new CSR ready, you may proceed with the next step.

Reissuance is completely free of charge unless you are adding SAN names to a Multi-Domain certificate with a reissue.

Note! Any Comodo SSL certificate can be reissued for a different domain. If you change the common name for a Single-Domain or Wildcard certificate the previous (parent) certificate gets revoked.

If you are reissuing an OV/EV SSL, use the same contact information that you used originally unless you are reissuing the certificate to change this information. This will save you some time during reissuance process.

Let's start with the process itself:

Step 1

Copy and paste the CSR code generated for the certificate reissue.


Step 2

Select the server type the certificate will be installed to.


  • Check the domains (SANs) that will be secured by SSL and click ‘Onward’ (otherwise, re-generate the CSR according to prompt messages and start the process again).


Step 3

  • Choose the domain control validation method for the reissue, either one of the approver email addresses or uploading a text file.

‘Upload a file’ DCV method is not available for OV/EV certificates.


Step 4

  • Confirm or change administrative contact information.

OV and EV certificates will have separate fields for the company details and/or information for callback verification.


Note: You will not be able to change administrative email address during the reissue process. The reissued certificate will be sent to the same email that was chosen during the original certificate activation.

Additional information

After the reissue is submitted, you need to complete Domain Control Validation process to have the certificate issued.

OV and EV certificates will require additional company verification process.

If you need to change the DCV method, contact our Support team.

After the certificate is validated, the certificate files will be sent to the SSL administrative email.

Do not forget to install a new certificate on the server replacing the old one.