question

amanjotsingh-1048 avatar image
0 Votes"
amanjotsingh-1048 asked JamesTran-MSFT commented

Modify Certificate to include SAN

Hi
I have a certificate in Azure Key Vault. Currently it dont have the SAN.Is it possible to modify the certificate and include the SAN without creating a new version.

Thanks

azure-key-vault
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

AndriyBilous avatar image
1 Vote"
AndriyBilous answered JamesTran-MSFT commented

Hello @amanjotsingh-1048

Unfortunately it is not possible to modify an existing certificate without invalidating the signature.

With an invalid signature the certificate will be considered invalid and rejected by the browser.
If editing a certificate would be possible and the edited certificate accepted by the browser: in this case an attacker could easily modify an existing certificate for its own domain to include any other domain for which he wants to do a man in the middle attack.
https://stackoverflow.com/questions/42417010/how-can-we-add-san-to-an-existing-pcks-12

So, if you want to "modify" a certificate, then you actually need to obtain a new certificate, with new contents. It is not possible to upgrade any other SSL certificate type to SAN.
In order to add SANs to a certificate, you must generate a new Certificate Signing Request (CSR) specifying the correct common name, then reissue SSL certificate from one of the SSL providers.
https://www.namecheap.com/support/knowledgebase/article.aspx/9282/2221/can-i-add-another-domain-later-after-the-ssl-certificate-has-been-issued-and-activated/
https://support.globalsign.com/ssl/general-ssl/change-certificate-details-after-issuance



If you think your question has been answered, click "Mark as Answer" if just helped click "Vote as helpful". This can be beneficial to other community members reading this forum thread.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@amanjotsingh-1048
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.


Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

0 Votes 0 ·