Reputation: 39691
Changing ip address for a domain name - how to test if ssl will still work?
I've got a domain purchased from godaddy (example.com), as well as an ssl certificate from them for that same domain. I have a single machine running a web server and a static ip, the domain from godaddy points to that static ip. The ssl cert is installed on that machine, and everything works fine.
Now I need to start hosting from a different machine, which has a different static IP address. I believe all I have to do is change the IP address for my domain in godaddy's control panel, and the ssl certificate should still be valid, even though it's a new IP address.
Is there any way to test this beforehand? Is my assumption correct that just changing the IP address in the domain record is all I have to do?
Thanks
Upvotes: 1
Views: 2360
Answers (1)
Reputation: 8492
SSL certificates are (almost always) associated with domain names, not IP addresses. Assuming you have a standard configuration for your SSL cert, you're fine.
But! You want to test this beforehand. OK:
openssl x509 -in yourcert.crt -text -noout
This command will allow you to examine your certificate. In particular, look for your hostname. Mine says something like:
X509v3 Subject Alternative Name:
DNS:mail.cternus.net, DNS:cternus.net
If your hostname is in there (and your IP address is not), you're golden.
Upvotes: 1
Related Questions
- SSL certificate testing
- Test SSL before changing DNS
- Checking SSL validity of an SSL certifcate using IP in C#
- Check SSL installed correctly without domain name
- can you put SSL on a IP address or only on a web server's domain name?
- Checking SSL works before migrating a site
- Testing SSL certificate on other IP address
- Certificate Error Accessing HTTPS by IP Address
- Will change of server's IP address affect ssl certificate?
- SSL certificate config and testing