I create cert for test.fermion-risk.com domain on Lets Encrypt. This domain is our test server. After few months i buy certificate on Comodo fom www.fermion-risk.com, which is our production server. I install new cert on server but when i open the page it shows old cert which is issued for test.fermion-risk.com and issued by Lets encrypt, and that cert is not installed on that server. How can i revoke old certificate and fix that.
Server is on Windows OS. Application server is Tomcat.
Hi @marko.dudic
don't revoke the certificate.
It's valid ( https://check-your-website.server-daten.de/?q=fermion-risk.com ):
CN=test.fermion-risk.com
11.03.2019
09.06.2019
expires in 66 days test.fermion-risk.com,
www.fermion-risk.com - 2 entries
www is secure. If you install the new certificate, the old certificate is replaced.
If you revoke the certificate without replacing it, your website would be dead.
Ask Comodo how to install the new certificate. If this is done, the old certificate isn't longer important.
I install cert from comodo, but i dont know why browser use old Lets encrypt cert.
i want browser to use this cert from
1315804109
CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester
2019-03-24 23:00:00
2020-03-24 22:59:59
COMODO SSL, Domain Control Validated, fermion-risk.com, www.fermion-risk.com
Your website sends
CN=test.fermion-risk.com
11.03.2019
09.06.2019
expires in 61 days test.fermion-risk.com, www.fermion-risk.com - 2 entries
So
You have two comodo certificates from the last 7 days:
| CRT-Id | Issuer | not before | not after | Domain names | LE-Duplicate | next LE |
|---|---|---|---|---|---|---|
| 1352680425 | CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester | 2019-04-04 22:00:00 | 2020-03-24 22:59:59 | COMODO SSL, Domain Control Validated, fermion-risk.com, www.fermion-risk.com | ||
| 1352758520 | CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester | 2019-04-04 22:00:00 | 2020-03-24 22:59:59 | COMODO SSL, Domain Control Validated, fermion-risk.com, www.fermion-risk.com | ||
| 1315804109 | CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester | 2019-03-24 23:00:00 | 2020-03-24 22:59:59 | COMODO SSL, Domain Control Validated, fermion-risk.com, www.fermion-risk.com | ||
| 1275625553 | CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US | 2019-03-11 09:34:52 | 2019-06-09 08:34:52 | test.fermion-risk.com, www.fermion-risk.com | ||
| 1009209758 | CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US | 2018-12-07 13:02:55 | 2019-03-07 13:02:55 | test.fermion-risk.com | ||
| 1008486487 | CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US | 2018-12-07 06:32:58 | 2019-03-07 06:32:58 | test.fermion-risk.com |
But if you don't install one of these, the current certificate is used.
It's irrelevant, which CA has created that certificate.