If an administrator needs to renew a certificate for a web server he/she should submit the CSR (Certificate Signing Request) to CA.
If a security administrator is required to submit a new CSR to a CA, teh fisrt step the administrator should do is to generate a new private key based on RSA.
