Hi all,
I know the purpose of SSL certifcates, but i'm far from a expert on that side. I think i have 2 simple questions:

1. When i need to renew a certificate, do you always have to create a new CSR?
2. I don't understand the purpose of Trustpoints. When you request a certificate, most of the time you get a chain (your servers certifcate, intermediate(s), root). How should i handle that regarding trustpoints? Is there some way i can assign the complete chain to 1 trustpoint or what is the best practice in this case?

Thanks in advance guys and have a nice day!

Eric