https://community.cisco.com/t5/network-security/certificates-csr-and-trustpoints-question/m-p/3871856#M6039 <P>Hi all,<BR />I know the purpose of SSL certifcates, but i'm far from a expert on that side. I think i have 2 simple questions:</P><OL><LI>When i need to renew a certificate, do you always have to create a new CSR?</LI><LI>I don't understand the purpose of Trustpoints. When you request a certificate, most of the time you get a chain (your servers certifcate, intermediate(s), root). How should i handle that regarding trustpoints? Is there some way i can assign the complete chain to 1 trustpoint or what is the best practice in this case?</LI></OL><P>Thanks in advance guys and have a nice day!</P><P>Eric</P> Fri, 21 Feb 2020 17:12:53 GMT Eric Snijders 2020-02-21T17:12:53Z https://community.cisco.com/t5/network-security/certificates-csr-and-trustpoints-question/m-p/3871856#M6039 <P>Hi all,<BR />I know the purpose of SSL certifcates, but i'm far from a expert on that side. I think i have 2 simple questions:</P><OL><LI>When i need to renew a certificate, do you always have to create a new CSR?</LI><LI>I don't understand the purpose of Trustpoints. When you request a certificate, most of the time you get a chain (your servers certifcate, intermediate(s), root). How should i handle that regarding trustpoints? Is there some way i can assign the complete chain to 1 trustpoint or what is the best practice in this case?</LI></OL><P>Thanks in advance guys and have a nice day!</P><P>Eric</P> Fri, 21 Feb 2020 17:12:53 GMT https://community.cisco.com/t5/network-security/certificates-csr-and-trustpoints-question/m-p/3871856#M6039 Eric Snijders 2020-02-21T17:12:53Z