Moving sites to new servers


#1

In this scenario a certificate is installed for a website on a web server which has LE installed along with it’s own private keys.

This site now needs moved to a new server which also has LE encrypt installed along with it’s own private keys.

For this scenario, my understanding is that I would request a new certificate on the new machine using the webroot method. Am I correct? Are there possible gotchas here?

Thanks!


#2

If you’re really using those server specific private keys for the TLS encryption, then yes, you would have to generate a new CSR with those private keys and generate a new cert, b/c the certificates public key is coupled to its private key…