Renewing certificates¶

Venafi Control Plane streamlines certificate renewals, allowing you to renew certificates faster and with fewer errors. If the right conditions are met, a certificate can be renewed with just a couple of clicks, while maintaining important metadata, such as its associated tags.

If Control Plane doesn't have everything it needs, or if you want to change some of the data on a certificate renewal request, Control Plane helps you by pre-populating the certificate renewal fields with data from the existing certificate.

In addition to manually renewing certificates, you can also automate the renewal and provisioning of certificates using the auto-renewal and provisioning feature.

Maximizing certificate validity¶

You always need to renew certificates before they expire, or you will have outages on the systems those certificates protect. Renewal validity typically ends one year from the day the renewal is issued, so you typically lose the remaining validity time on the old certificate.

Using DigiCert with TLS Protect Cloud however, you can maximize your certificates validity. When you renew an existing certificate with DigiCert, the validity of the new certificate ends one year from the end of life of the certificate being renewed. Within Control Plane both certificates remain linked. You can download the new certificate, and both remain active in TLS Protect Cloud. This applies to all DigiCert certificates, whether they were issued by TLS Protect Cloud or were imported manually.

Renewing DigiCert certificates with TLS Protect Cloud gives you the best value because you don't lose the time between renewal and the old certificate's expiration.

What's next¶

Manually renew a certificate or set up certificate auto-renewal