StarDomain

Renewing SSL Certificates

Renewing SSL Certificates

SSL certificates have a limited validity period and must be renewed before they expire. This guide covers the renewal timeline, process, and what happens if your certificate lapses.

SSL Certificate Validity

SSL certificates are currently issued for a maximum of 1 year (397 days) as per industry standards set by the CA/Browser Forum. After this period, the certificate expires and must be renewed.

Renewal Timeline

Follow this recommended timeline to ensure uninterrupted SSL coverage:

Time Before ExpiryAction
60 days{{COMPANY_NAME}} sends first renewal reminder
30 daysStart the renewal process
14 daysRenewal becomes urgent — complete as soon as possible
7 daysFinal reminder — risk of service disruption
0 daysCertificate expires — site shows security warnings

Tip: Most CAs allow you to renew up to 90 days before expiry without losing any remaining time. The unused days are added to your new certificate.

How to Renew Your SSL Certificate

Step 1: Initiate Renewal

  1. Log in to your {{COMPANY_NAME}} client portal at {{SUPPORT_URL}}
  2. Navigate to Services > My Services
  3. Find your SSL certificate service
  4. Click Renew (available 90 days before expiry)
  5. Complete the payment for the renewal period

Step 2: Generate a New CSR

A new CSR (Certificate Signing Request) is recommended for each renewal for security best practices.

  1. Generate a new CSR on your web server (same process as initial order)
  2. Submit the CSR through your service management page
  3. Select your web server type

Step 3: Complete Domain Validation

Domain validation is required again during renewal. Choose your preferred method:

  • Email validation — Fastest option
  • DNS validation — Add/update a DNS record
  • HTTP validation — Upload a verification file

See Domain Validation Process for detailed instructions.

Step 4: Install the New Certificate

Once validated, you will receive the renewed certificate. Install it on your server, replacing the old certificate.

Tip: The renewed certificate is a completely new certificate — you must install it on your server. It does not automatically replace the old one.

What Happens If Your SSL Expires?

When an SSL certificate expires, the consequences are immediate and visible:

Browser Warnings

  • Visitors see a full-page security warning: "Your connection is not private" or "This site is not secure"
  • Most visitors will leave immediately — studies show 85% of users abandon sites with SSL warnings
  • Chrome, Firefox, Safari, and Edge all display prominent warnings

Impact on Your Site

  • Lost traffic: Visitors cannot easily bypass security warnings
  • SEO penalty: Search engines may downrank your site
  • Broken functionality: Payment forms, login pages, and APIs may stop working
  • Trust damage: Your brand appears unprofessional or compromised
  • Compliance issues: PCI DSS and other standards require valid SSL

How to Recover

  1. Renew the certificate immediately through your {{COMPANY_NAME}} portal
  2. If the certificate is within the grace period, you may be able to renew at regular price
  3. If significantly expired, you may need to purchase a new certificate
  4. Re-install the new certificate on your server
  5. Verify the site loads correctly over HTTPS

Auto-Renewal

To avoid manual renewal hassles:

  1. Go to Services > My Services
  2. Click on your SSL service
  3. Enable Auto-Renewal if available
  4. Ensure your payment method on file is up to date

Tip: Even with auto-renewal enabled, you still need to install the renewed certificate on your server. Auto-renewal handles payment and issuance only.

Troubleshooting

  • Renewal button not available: You may be too early (more than 90 days before expiry) or the service may need manual renewal. Contact support.
  • Validation failing during renewal: Use the same validation method that worked during initial issuance. Ensure email addresses or DNS records are still accessible.
  • New certificate not working after installation: Verify you installed both the certificate and the CA bundle/intermediate certificates. Check that the private key matches.
  • Mixed content warnings after renewal: The certificate is installed correctly, but your site loads some resources over HTTP. Update all internal links to HTTPS.

Related Articles

Need help renewing your SSL certificate? Contact {{COMPANY_NAME}} support at {{SUPPORT_EMAIL}} or open a ticket at {{SUPPORT_URL}}.

Need Help?
New TicketTrack TicketKnowledge BaseContact Us