Question

Update SSL for a Custom CDN Domain

Posted August 2, 2019 555 views
DigitalOcean

Hello.

I have a Custom CDN sub-domain with a self created SSL. The SSL has expired.

How can I update the SSL?

I removed the existing sub-domain. I try to create a new one, but, get “must be unique” message. The “old” one (the one that needs a fresh SSL) still appears in the list. When selected, there is no way to update the SSL records.

Thank you.

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
4 answers

Hello,

May I ask what server do you have (OS and etc). You can easily install a Let’s Encrypt SSL using certbot. If you can provide some additional information, I can provide you a step by step guide.

Alex

Thanks for the reply.

In April, I created a custom CDN sub-domain with a “Bring your own certificate” in Spaces. The certificate expired in July.

How do I update / renew the CDN sub-domain “Bring your own certificate” without creating a new CDN sub-domain?

From Support:

In order to accomplish what you are aiming at you will need to remove the expired cert from the control panel here:

https://cloud.digitalocean.com/account/security

Keep in mind it won’t let you delete it until you have removed it from your spaces/load balancers. With that complete, you can add a new certificate to the same section with the new certificate, keys etc..

The solution to my own question:

1) I could not remove one of the CDN sub-domains, kept getting an error, but, I was able to remove the sub-domain on another CDN.

2) On the Security tab, the Delete option was still disabled for both CDN sub-domains.

3) On Spaces, I disabled both CDNs.

4) Once the CDNs were Disabled, the Delete option was enabled on the Security tab so I was able to delete the expired SSLs.

Once deleted, I was able to recreate the SSL, turn on CDN and attached the custom sub-domain to the CDN once again. Needless to say, I am going to transfer or register a new domain for my CDN so it is managed by DO so expired LetsEncrypt SSLs are automatically renewed.

Submit an Answer