Publish: 2017-06-13 | Modify: 2017-06-21
A few months ago, Namecheap launched a Symantec SSL certificate replacement program, which allows users to replace their Symantec SSL certificates with Comodo SSL certificates for free. The new Comodo SSL certificates have the same expiration date as the original Symantec SSL certificates, and users can choose whether to renew them after they expire. The reason for launching this program may be due to Google's announcement to gradually reduce trust in Symantec SSL certificates.
Currently, free DV SSL certificates provided by Alibaba Cloud, Tencent Cloud, and West.cn are issued by Symantec. It seems that free things are easy to be abused. So let's share how to replace Symantec SSL with Comodo SSL.
After extracting the attachments from the email, there will be two files: i_bk_tn.crt
(certificate file) and i_bk_tn.ca-bundle
(root certificate). These two files need to be merged into one (append the content of i_bk_tn.ca-bundle
to the end). The private key file was provided when generating the CSR online. The deployment of the SSL certificate is not described here.
Comodo DV SSL can be purchased directly at a low price. If conditions permit, it is recommended to use paid SSL certificates. The revocation of WoSign's root certificate serves as a warning. Tip: Another method is to first apply for a free Symantec SSL certificate and then replace it with a free Comodo SSL certificate. This way, you can use the Comodo SSL certificate for up to one year for free.
I come from China and I am a freelancer. I specialize in Linux operations, PHP, Golang, and front-end development. I have developed open-source projects such as Zdir, ImgURL, CCAA, and OneNav.