Sharing SSL Certificates Across Multiple Servers

SSL certificates from SSL.com can be freely shared across multiple servers, and you can rekey certificates as many times as needed at no additional cost. This guide outlines two methods for installing certificate files on multiple servers.

Method 1: Using PFX Files for Certificate Sharing

The simplest approach involves creating and importing a PFX file (also known as a PKCS#12 file), which bundles your certificate, intermediates, and private key together. This method is particularly useful for cloud services like Azure, which often require PFX format certificates.

Steps for PFX Implementation:

1. Export a PFX file using either OpenSSL or Windows
2. Import the PFX file on your target servers using OpenSSL or Windows
3. Configure each server by binding the appropriate IP address to the imported PFX file

Method 2: Creating Unique Certificates Per Server

For enhanced security, you can generate different private keys for each server. While this approach requires more management effort, it offers improved security through key isolation.

Steps for Unique Certificate Implementation:

1. Generate a new CSR/Private Key pair on each target server

   • Compatible with Apache, NGINX, IIS, and WHM/cPanel

2. Reprocess your certificate order using the newly generated CSR

3. Configure each server with its unique certificate files

   • Configuration guides available for Apache, NGINX, Windows, and WHM/cPanel

Support

For assistance with either implementation method, please contact SSL.com’s support team.