Enom does not offer auto-renew for SSL certificates. To keep your site secured without interruption, you renew by purchasing a new certificate before the current one expires and configuring it with the same information. This article walks you through the renewal process and the early-renewal windows that apply per certificate authority.
How SSL renewal works at Enom
There is no auto-renew option for SSL certificates at Enom. Renewing is effectively a repurchase: you buy a new certificate of the same type and configure it with information identical to the original.
You cannot renew earlier than a set window before the expiration date, and the window depends on the certificate authority:
- DigiCert, GeoTrust, and RapidSSL: no earlier than 30 days before expiration.
- Sectigo: no earlier than 60 days before expiration.
The new certificate is valid for 12 months from the date of purchase. For Sectigo certificates, any remaining days on the original certificate carry over and are added to the new expiration date. For DigiCert, GeoTrust, and RapidSSL certificates, remaining days do not carry over.
Before you begin
- Note the current certificate's expiration date so you renew within the allowed window. You can view it under Security → SSL Certificates → Manage.
- Have a new CSR ready, generated on the server where the certificate will be installed. See Generating a CSR for Your SSL Certificate.
- Make sure the new certificate is the same type as the original and that you configure it with identical information.
Step 1: Purchase the renewal
- In your account, go to Security → SSL Certificates → Manage.
- Click Add new and purchase a new certificate of the same type as the one you are renewing.
- Complete the checkout process.
If you are within the early-renewal window for your certificate authority and want the remaining days handled correctly, verify the certificate type matches the original before completing checkout.
Step 2: Submit the CSR and complete validation
- Return to the certificate list and select the new certificate marked Not configured.
- Paste the full CSR, update the contacts if needed, and click Submit certificate.
- Select an approval email address and submit. You will receive a domain verification email, followed by a second email containing the issued certificate.
For domain-validated certificates, this can complete in minutes; organization- and extended-validation certificates take longer because the CA performs additional checks.
Step 3: Install the certificate
Once the renewed certificate is issued, install it on your web server alongside the matching private key, and include the CA bundle so browsers recognize the certificate as trusted. For installation steps and troubleshooting, see Advanced SSL Setup and Troubleshooting.
Because there is no auto-renew, an expired certificate will cause browser security warnings on your site. Set a reminder ahead of the expiration date so you can renew within the allowed window and avoid any gap in coverage.
Next steps
- If you only need to replace the CSR on an existing certificate rather than buy a new term, see Reissuing SSL Certificates.
Questions? Contact Enom Support.
How helpful was this article?
Thanks for your feedback!
Do you still need help? If so please submit a request here.