Knowledge Base
What to Do If the Private Key of Your Sectigo Certificate Is Missing?
Summary:
A private key is essential for installing and using your certificate. If the private key is missing, you cannot use the certificate. If you lose the private key of your certificate, the best practice is to reissue the certificate using a new CSR based on a new private key.
Procedure for Reissuing a Certificate When the Private Key Is Missing
-
Generate a new Certificate Signing Request (CSR) using a newly created private key.
-
Access your Sectigo account by navigating to store.sectigo.com.
-
Submit a reissue request for the certificate, ensuring the new CSR is provided.
-
Complete all required validation steps as instructed by Sectigo.
-
Install the reissued certificate and implement secure storage practices for the private key to prevent future loss.
Best Practices for Future
-
Never share private keys in public repositories or unsecured channels, as this can lead to certificate compromise and revocation.
-
Backup the private key securely during installation.
-
Securely back up private keys during installation and store them in encrypted locations or hardware security modules (HSMs).
-
Use strong passwords when exporting certificates in .pfx or similar formats to prevent unauthorized access.
Important Note
Sectigo cannot recover your private key because it is never transmitted to Sectigo for security reasons. If lost, the only solution is to reissue the certificate.
Related Articles:
Tags:
Need help?
Need help making a purchase? Contact us today to get your certificate issued right away.
Live chat
Click the button below or click "Chat with an Expert" to start chatting with us now!
