So, you’ve gotten an SSL/TLS certificate and validated your base domain, but now you need certificates to cover additional subdomains. Can you re-use your previous validation, or do you need to repeat the process?
- If you have validated
example.com, you do not need to go through domain validation for a new CSR for
info.example.com(or any other subdomain of
example.com) unless the original validation has expired. (Note: DV is valid for 825 days between validations.)
- If you are adding
info.example.comto the CSR of a previously-issued certificate covering
example.com(for example, when reprocessing a multi-domain certificate), you do not need to go through domain validation for
info.example.comunless the original validation has expired.
- However, in both of the above cases, if your initial validation was for
info.example.com, you do need to go through domain validation for
www.example.com(but not for